TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-crypto / 5b6425a9313bdeb32380eb08fb1aec4a2e1213a9 / . / tests / ssl-opt.sh
blob: 5d8efc2eb63d2ff617a4a83992258adac04bdcb3 [file] [log] [blame]
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1#!/bin/sh
2
Simon Butcher58eddef2016-05-19 23:43:11 +0100[diff] [blame]3# ssl-opt.sh
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]4#
Simon Butcher58eddef2016-05-19 23:43:11 +0100[diff] [blame]5# This file is part of mbed TLS (https://tls.mbed.org)
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]6#
Simon Butcher58eddef2016-05-19 23:43:11 +0100[diff] [blame]7# Copyright (c) 2016, ARM Limited, All Rights Reserved
8#
9# Purpose
10#
11# Executes tests to prove various TLS/SSL options and extensions.
12#
13# The goal is not to cover every ciphersuite/version, but instead to cover
14# specific options (max fragment length, truncated hmac, etc) or procedures
15# (session resumption from cache or ticket, renego, etc).
16#
17# The tests assume a build with default options, with exceptions expressed
18# with a dependency. The tests focus on functionality and do not consider
19# performance.
20#
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]21
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]22set -u
23
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]24if cd $( dirname $0 ); then :; else
25 echo "cd $( dirname $0 ) failed" >&2
26 exit 1
27fi
28
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]29# default values, can be overriden by the environment
30: ${P_SRV:=../programs/ssl/ssl_server2}
31: ${P_CLI:=../programs/ssl/ssl_client2}
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]32: ${P_PXY:=../programs/test/udp_proxy}
Manuel Pégourié-Gonnard74faf3c2014-03-13 18:47:44 +0100[diff] [blame]33: ${OPENSSL_CMD:=openssl} # OPENSSL would conflict with the build system
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]34: ${GNUTLS_CLI:=gnutls-cli}
35: ${GNUTLS_SERV:=gnutls-serv}
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]36: ${PERL:=perl}
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]37
Manuel Pégourié-Gonnardfa60f122014-09-26 16:07:29 +0200[diff] [blame]38O_SRV="$OPENSSL_CMD s_server -www -cert data_files/server5.crt -key data_files/server5.key"
Manuel Pégourié-Gonnard74faf3c2014-03-13 18:47:44 +0100[diff] [blame]39O_CLI="echo 'GET / HTTP/1.0' | $OPENSSL_CMD s_client"
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]40G_SRV="$GNUTLS_SERV --x509certfile data_files/server5.crt --x509keyfile data_files/server5.key"
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]41G_CLI="echo 'GET / HTTP/1.0' | $GNUTLS_CLI --x509cafile data_files/test-ca_cat12.crt"
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]42TCP_CLIENT="$PERL scripts/tcp_client.pl"
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]43
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]44# alternative versions of OpenSSL and GnuTLS (no default path)
45
46if [ -n "${OPENSSL_LEGACY:-}" ]; then
47 O_LEGACY_SRV="$OPENSSL_LEGACY s_server -www -cert data_files/server5.crt -key data_files/server5.key"
48 O_LEGACY_CLI="echo 'GET / HTTP/1.0' | $OPENSSL_LEGACY s_client"
49else
50 O_LEGACY_SRV=false
51 O_LEGACY_CLI=false
52fi
53
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]54if [ -n "${GNUTLS_NEXT_SERV:-}" ]; then
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]55 G_NEXT_SRV="$GNUTLS_NEXT_SERV --x509certfile data_files/server5.crt --x509keyfile data_files/server5.key"
56else
57 G_NEXT_SRV=false
58fi
59
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]60if [ -n "${GNUTLS_NEXT_CLI:-}" ]; then
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]61 G_NEXT_CLI="echo 'GET / HTTP/1.0' | $GNUTLS_NEXT_CLI --x509cafile data_files/test-ca_cat12.crt"
62else
63 G_NEXT_CLI=false
64fi
65
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]66TESTS=0
67FAILS=0
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]68SKIPS=0
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]69
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]70CONFIG_H='../include/mbedtls/config.h'
Manuel Pégourié-Gonnard83d8c732014-04-07 13:24:21 +0200[diff] [blame]71
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]72MEMCHECK=0
Manuel Pégourié-Gonnard417d46c2014-03-13 19:17:53 +0100[diff] [blame]73FILTER='.*'
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]74EXCLUDE='^$'
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]75
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]76SHOW_TEST_NUMBER=0
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]77RUN_TEST_NUMBER=''
78
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]79PRESERVE_LOGS=0
80
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]81# Pick a "unique" server port in the range 10000-19999, and a proxy
82# port which is this plus 10000. Each port number may be independently
83# overridden by a command line option.
84SRV_PORT=$(($$ % 10000 + 10000))
85PXY_PORT=$((SRV_PORT + 10000))
86
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]87print_usage() {
88 echo "Usage: $0 [options]"
Manuel Pégourié-Gonnardf46f1282014-12-11 11:51:28 +0100[diff] [blame]89 printf " -h|--help\tPrint this help.\n"
90 printf " -m|--memcheck\tCheck memory leaks and errors.\n"
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]91 printf " -f|--filter\tOnly matching tests are executed (BRE; default: '$FILTER')\n"
92 printf " -e|--exclude\tMatching tests are excluded (BRE; default: '$EXCLUDE')\n"
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]93 printf " -n|--number\tExecute only numbered test (comma-separated, e.g. '245,256')\n"
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]94 printf " -s|--show-numbers\tShow test numbers in front of test names\n"
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]95 printf " -p|--preserve-logs\tPreserve logs of successful tests as well\n"
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]96 printf " --port\tTCP/UDP port (default: randomish 1xxxx)\n"
97 printf " --proxy-port\tTCP/UDP proxy port (default: randomish 2xxxx)\n"
Andres AGf04f54d2016-10-10 15:46:20 +0100[diff] [blame]98 printf " --seed\tInteger seed value to use for this test run\n"
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]99}
100
101get_options() {
102 while [ $# -gt 0 ]; do
103 case "$1" in
Manuel Pégourié-Gonnard417d46c2014-03-13 19:17:53 +0100[diff] [blame]104 -f|--filter)
105 shift; FILTER=$1
106 ;;
107 -e|--exclude)
108 shift; EXCLUDE=$1
109 ;;
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]110 -m|--memcheck)
111 MEMCHECK=1
112 ;;
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]113 -n|--number)
114 shift; RUN_TEST_NUMBER=$1
115 ;;
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]116 -s|--show-numbers)
117 SHOW_TEST_NUMBER=1
118 ;;
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]119 -p|--preserve-logs)
120 PRESERVE_LOGS=1
121 ;;
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]122 --port)
123 shift; SRV_PORT=$1
124 ;;
125 --proxy-port)
126 shift; PXY_PORT=$1
127 ;;
Andres AGf04f54d2016-10-10 15:46:20 +0100[diff] [blame]128 --seed)
129 shift; SEED="$1"
130 ;;
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]131 -h|--help)
132 print_usage
133 exit 0
134 ;;
135 *)
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]136 echo "Unknown argument: '$1'"
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]137 print_usage
138 exit 1
139 ;;
140 esac
141 shift
142 done
143}
144
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]145# Skip next test; use this macro to skip tests which are legitimate
146# in theory and expected to be re-introduced at some point, but
147# aren't expected to succeed at the moment due to problems outside
148# our control (such as bugs in other TLS implementations).
149skip_next_test() {
150 SKIP_NEXT="YES"
151}
152
Manuel Pégourié-Gonnard988209f2015-03-24 10:43:55 +0100[diff] [blame]153# skip next test if the flag is not enabled in config.h
154requires_config_enabled() {
155 if grep "^#define $1" $CONFIG_H > /dev/null; then :; else
156 SKIP_NEXT="YES"
157 fi
158}
159
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]160# skip next test if the flag is enabled in config.h
161requires_config_disabled() {
162 if grep "^#define $1" $CONFIG_H > /dev/null; then
163 SKIP_NEXT="YES"
164 fi
165}
166
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]167get_config_value_or_default() {
Hanno Becker5cd017f2018-08-24 14:40:12 +0100[diff] [blame]168 NAME="$1"
Hanno Beckere6045562018-08-28 11:24:55 +0100[diff] [blame]169 DEF_VAL=$( grep ".*#define.*${NAME}" ../include/mbedtls/config.h |
Hanno Becker5cd017f2018-08-24 14:40:12 +0100[diff] [blame]170 sed 's/^.*\s\([0-9]*\)$/\1/' )
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]171 ../scripts/config.pl get $NAME || echo "$DEF_VAL"
172}
173
174requires_config_value_at_least() {
175 VAL=$( get_config_value_or_default "$1" )
Hanno Becker5cd017f2018-08-24 14:40:12 +0100[diff] [blame]176 if [ "$VAL" -lt "$2" ]; then
177 SKIP_NEXT="YES"
178 fi
179}
180
181requires_config_value_at_most() {
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]182 VAL=$( get_config_value_or_default "$1" )
Hanno Becker5cd017f2018-08-24 14:40:12 +0100[diff] [blame]183 if [ "$VAL" -gt "$2" ]; then
184 SKIP_NEXT="YES"
185 fi
186}
187
Hanno Becker2dd04902018-11-16 17:27:29 +0000[diff] [blame]188requires_ciphersuite_enabled() {
Hanno Becker5b6425a2018-11-20 11:31:17 +0000[diff] [blame^]189 if [ -z "$($P_CLI --help | grep $1)" ]; then
Hanno Becker2dd04902018-11-16 17:27:29 +0000[diff] [blame]190 SKIP_NEXT="YES"
191 fi
192}
193
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]194# skip next test if OpenSSL doesn't support FALLBACK_SCSV
195requires_openssl_with_fallback_scsv() {
196 if [ -z "${OPENSSL_HAS_FBSCSV:-}" ]; then
197 if $OPENSSL_CMD s_client -help 2>&1 | grep fallback_scsv >/dev/null
198 then
199 OPENSSL_HAS_FBSCSV="YES"
200 else
201 OPENSSL_HAS_FBSCSV="NO"
202 fi
203 fi
204 if [ "$OPENSSL_HAS_FBSCSV" = "NO" ]; then
205 SKIP_NEXT="YES"
206 fi
207}
208
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]209# skip next test if GnuTLS isn't available
210requires_gnutls() {
211 if [ -z "${GNUTLS_AVAILABLE:-}" ]; then
Manuel Pégourié-Gonnard03db6b02015-06-26 15:45:30 +0200[diff] [blame]212 if ( which "$GNUTLS_CLI" && which "$GNUTLS_SERV" ) >/dev/null 2>&1; then
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]213 GNUTLS_AVAILABLE="YES"
214 else
215 GNUTLS_AVAILABLE="NO"
216 fi
217 fi
218 if [ "$GNUTLS_AVAILABLE" = "NO" ]; then
219 SKIP_NEXT="YES"
220 fi
221}
222
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]223# skip next test if GnuTLS-next isn't available
224requires_gnutls_next() {
225 if [ -z "${GNUTLS_NEXT_AVAILABLE:-}" ]; then
226 if ( which "${GNUTLS_NEXT_CLI:-}" && which "${GNUTLS_NEXT_SERV:-}" ) >/dev/null 2>&1; then
227 GNUTLS_NEXT_AVAILABLE="YES"
228 else
229 GNUTLS_NEXT_AVAILABLE="NO"
230 fi
231 fi
232 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
233 SKIP_NEXT="YES"
234 fi
235}
236
237# skip next test if OpenSSL-legacy isn't available
238requires_openssl_legacy() {
239 if [ -z "${OPENSSL_LEGACY_AVAILABLE:-}" ]; then
240 if which "${OPENSSL_LEGACY:-}" >/dev/null 2>&1; then
241 OPENSSL_LEGACY_AVAILABLE="YES"
242 else
243 OPENSSL_LEGACY_AVAILABLE="NO"
244 fi
245 fi
246 if [ "$OPENSSL_LEGACY_AVAILABLE" = "NO" ]; then
247 SKIP_NEXT="YES"
248 fi
249}
250
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]251# skip next test if IPv6 isn't available on this host
252requires_ipv6() {
253 if [ -z "${HAS_IPV6:-}" ]; then
254 $P_SRV server_addr='::1' > $SRV_OUT 2>&1 &
255 SRV_PID=$!
256 sleep 1
257 kill $SRV_PID >/dev/null 2>&1
258 if grep "NET - Binding of the socket failed" $SRV_OUT >/dev/null; then
259 HAS_IPV6="NO"
260 else
261 HAS_IPV6="YES"
262 fi
263 rm -r $SRV_OUT
264 fi
265
266 if [ "$HAS_IPV6" = "NO" ]; then
267 SKIP_NEXT="YES"
268 fi
269}
270
Andrzej Kurekb4593462018-10-11 08:43:30 -0400[diff] [blame]271# skip next test if it's i686 or uname is not available
272requires_not_i686() {
273 if [ -z "${IS_I686:-}" ]; then
274 IS_I686="YES"
275 if which "uname" >/dev/null 2>&1; then
276 if [ -z "$(uname -a | grep i686)" ]; then
277 IS_I686="NO"
278 fi
279 fi
280 fi
281 if [ "$IS_I686" = "YES" ]; then
282 SKIP_NEXT="YES"
283 fi
284}
285
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]286# Calculate the input & output maximum content lengths set in the config
287MAX_CONTENT_LEN=$( ../scripts/config.pl get MBEDTLS_SSL_MAX_CONTENT_LEN || echo "16384")
288MAX_IN_LEN=$( ../scripts/config.pl get MBEDTLS_SSL_IN_CONTENT_LEN || echo "$MAX_CONTENT_LEN")
289MAX_OUT_LEN=$( ../scripts/config.pl get MBEDTLS_SSL_OUT_CONTENT_LEN || echo "$MAX_CONTENT_LEN")
290
291if [ "$MAX_IN_LEN" -lt "$MAX_CONTENT_LEN" ]; then
292 MAX_CONTENT_LEN="$MAX_IN_LEN"
293fi
294if [ "$MAX_OUT_LEN" -lt "$MAX_CONTENT_LEN" ]; then
295 MAX_CONTENT_LEN="$MAX_OUT_LEN"
296fi
297
298# skip the next test if the SSL output buffer is less than 16KB
299requires_full_size_output_buffer() {
300 if [ "$MAX_OUT_LEN" -ne 16384 ]; then
301 SKIP_NEXT="YES"
302 fi
303}
304
Manuel Pégourié-Gonnard76fe9e42014-09-24 15:17:31 +0200[diff] [blame]305# skip the next test if valgrind is in use
306not_with_valgrind() {
307 if [ "$MEMCHECK" -gt 0 ]; then
308 SKIP_NEXT="YES"
309 fi
310}
311
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]312# skip the next test if valgrind is NOT in use
313only_with_valgrind() {
314 if [ "$MEMCHECK" -eq 0 ]; then
315 SKIP_NEXT="YES"
316 fi
317}
318
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]319# multiply the client timeout delay by the given factor for the next test
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]320client_needs_more_time() {
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]321 CLI_DELAY_FACTOR=$1
322}
323
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]324# wait for the given seconds after the client finished in the next test
325server_needs_more_time() {
326 SRV_DELAY_SECONDS=$1
327}
328
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]329# print_name <name>
330print_name() {
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]331 TESTS=$(( $TESTS + 1 ))
332 LINE=""
333
334 if [ "$SHOW_TEST_NUMBER" -gt 0 ]; then
335 LINE="$TESTS "
336 fi
337
338 LINE="$LINE$1"
339 printf "$LINE "
340 LEN=$(( 72 - `echo "$LINE" | wc -c` ))
Manuel Pégourié-Gonnardf46f1282014-12-11 11:51:28 +0100[diff] [blame]341 for i in `seq 1 $LEN`; do printf '.'; done
342 printf ' '
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]343
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]344}
345
346# fail <message>
347fail() {
348 echo "FAIL"
Manuel Pégourié-Gonnard3eec6042014-02-27 15:37:24 +0100[diff] [blame]349 echo " ! $1"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]350
Manuel Pégourié-Gonnardc2b00922014-08-31 16:46:04 +0200[diff] [blame]351 mv $SRV_OUT o-srv-${TESTS}.log
352 mv $CLI_OUT o-cli-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]353 if [ -n "$PXY_CMD" ]; then
354 mv $PXY_OUT o-pxy-${TESTS}.log
355 fi
356 echo " ! outputs saved to o-XXX-${TESTS}.log"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]357
Azim Khan19d13732018-03-29 11:04:20 +0100[diff] [blame]358 if [ "X${USER:-}" = Xbuildbot -o "X${LOGNAME:-}" = Xbuildbot -o "${LOG_FAILURE_ON_STDOUT:-0}" != 0 ]; then
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]359 echo " ! server output:"
360 cat o-srv-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]361 echo " ! ========================================================"
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]362 echo " ! client output:"
363 cat o-cli-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]364 if [ -n "$PXY_CMD" ]; then
365 echo " ! ========================================================"
366 echo " ! proxy output:"
367 cat o-pxy-${TESTS}.log
368 fi
369 echo ""
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]370 fi
371
Manuel Pégourié-Gonnard72e51ee2014-08-31 10:22:11 +0200[diff] [blame]372 FAILS=$(( $FAILS + 1 ))
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]373}
374
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]375# is_polar <cmd_line>
376is_polar() {
377 echo "$1" | grep 'ssl_server2\|ssl_client2' > /dev/null
378}
379
Manuel Pégourié-Gonnardfa60f122014-09-26 16:07:29 +0200[diff] [blame]380# openssl s_server doesn't have -www with DTLS
381check_osrv_dtls() {
382 if echo "$SRV_CMD" | grep 's_server.*-dtls' >/dev/null; then
383 NEEDS_INPUT=1
384 SRV_CMD="$( echo $SRV_CMD | sed s/-www// )"
385 else
386 NEEDS_INPUT=0
387 fi
388}
389
390# provide input to commands that need it
391provide_input() {
392 if [ $NEEDS_INPUT -eq 0 ]; then
393 return
394 fi
395
396 while true; do
397 echo "HTTP/1.0 200 OK"
398 sleep 1
399 done
400}
401
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]402# has_mem_err <log_file_name>
403has_mem_err() {
404 if ( grep -F 'All heap blocks were freed -- no leaks are possible' "$1" &&
405 grep -F 'ERROR SUMMARY: 0 errors from 0 contexts' "$1" ) > /dev/null
406 then
407 return 1 # false: does not have errors
408 else
409 return 0 # true: has errors
410 fi
411}
412
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]413# Wait for process $2 to be listening on port $1
414if type lsof >/dev/null 2>/dev/null; then
415 wait_server_start() {
416 START_TIME=$(date +%s)
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]417 if [ "$DTLS" -eq 1 ]; then
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]418 proto=UDP
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]419 else
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]420 proto=TCP
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]421 fi
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]422 # Make a tight loop, server normally takes less than 1s to start.
423 while ! lsof -a -n -b -i "$proto:$1" -p "$2" >/dev/null 2>/dev/null; do
424 if [ $(( $(date +%s) - $START_TIME )) -gt $DOG_DELAY ]; then
425 echo "SERVERSTART TIMEOUT"
426 echo "SERVERSTART TIMEOUT" >> $SRV_OUT
427 break
428 fi
429 # Linux and *BSD support decimal arguments to sleep. On other
430 # OSes this may be a tight loop.
431 sleep 0.1 2>/dev/null || true
432 done
433 }
434else
Gilles Peskinea9312652018-06-29 15:48:13 +0200[diff] [blame]435 echo "Warning: lsof not available, wait_server_start = sleep"
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]436 wait_server_start() {
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]437 sleep "$START_DELAY"
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]438 }
439fi
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]440
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]441# Given the client or server debug output, parse the unix timestamp that is
Andres Amaya Garcia3b1bdff2017-09-14 12:41:29 +0100[diff] [blame]442# included in the first 4 bytes of the random bytes and check that it's within
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]443# acceptable bounds
444check_server_hello_time() {
445 # Extract the time from the debug (lvl 3) output of the client
Andres Amaya Garcia67d8da52017-09-15 15:49:24 +0100[diff] [blame]446 SERVER_HELLO_TIME="$(sed -n 's/.*server hello, current time: //p' < "$1")"
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]447 # Get the Unix timestamp for now
448 CUR_TIME=$(date +'%s')
449 THRESHOLD_IN_SECS=300
450
451 # Check if the ServerHello time was printed
452 if [ -z "$SERVER_HELLO_TIME" ]; then
453 return 1
454 fi
455
456 # Check the time in ServerHello is within acceptable bounds
457 if [ $SERVER_HELLO_TIME -lt $(( $CUR_TIME - $THRESHOLD_IN_SECS )) ]; then
458 # The time in ServerHello is at least 5 minutes before now
459 return 1
460 elif [ $SERVER_HELLO_TIME -gt $(( $CUR_TIME + $THRESHOLD_IN_SECS )) ]; then
Andres Amaya Garcia3b1bdff2017-09-14 12:41:29 +0100[diff] [blame]461 # The time in ServerHello is at least 5 minutes later than now
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]462 return 1
463 else
464 return 0
465 fi
466}
467
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]468# wait for client to terminate and set CLI_EXIT
469# must be called right after starting the client
470wait_client_done() {
471 CLI_PID=$!
472
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]473 CLI_DELAY=$(( $DOG_DELAY * $CLI_DELAY_FACTOR ))
474 CLI_DELAY_FACTOR=1
475
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]476 ( sleep $CLI_DELAY; echo "===CLIENT_TIMEOUT===" >> $CLI_OUT; kill $CLI_PID ) &
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]477 DOG_PID=$!
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]478
479 wait $CLI_PID
480 CLI_EXIT=$?
481
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]482 kill $DOG_PID >/dev/null 2>&1
483 wait $DOG_PID
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]484
485 echo "EXIT: $CLI_EXIT" >> $CLI_OUT
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]486
487 sleep $SRV_DELAY_SECONDS
488 SRV_DELAY_SECONDS=0
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]489}
490
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]491# check if the given command uses dtls and sets global variable DTLS
492detect_dtls() {
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]493 if echo "$1" | grep 'dtls=1\|-dtls1\|-u' >/dev/null; then
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]494 DTLS=1
495 else
496 DTLS=0
497 fi
498}
499
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]500# Usage: run_test name [-p proxy_cmd] srv_cmd cli_cmd cli_exit [option [...]]
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]501# Options: -s pattern pattern that must be present in server output
502# -c pattern pattern that must be present in client output
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]503# -u pattern lines after pattern must be unique in client output
Andres Amaya Garcia93993de2017-09-06 15:38:07 +0100[diff] [blame]504# -f call shell function on client output
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]505# -S pattern pattern that must be absent in server output
506# -C pattern pattern that must be absent in client output
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]507# -U pattern lines after pattern must be unique in server output
Andres Amaya Garcia93993de2017-09-06 15:38:07 +0100[diff] [blame]508# -F call shell function on server output
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]509run_test() {
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]510 NAME="$1"
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]511 shift 1
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]512
Manuel Pégourié-Gonnard417d46c2014-03-13 19:17:53 +0100[diff] [blame]513 if echo "$NAME" | grep "$FILTER" | grep -v "$EXCLUDE" >/dev/null; then :
514 else
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]515 SKIP_NEXT="NO"
Manuel Pégourié-Gonnard417d46c2014-03-13 19:17:53 +0100[diff] [blame]516 return
517 fi
518
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]519 print_name "$NAME"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]520
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]521 # Do we only run numbered tests?
522 if [ "X$RUN_TEST_NUMBER" = "X" ]; then :
523 elif echo ",$RUN_TEST_NUMBER," | grep ",$TESTS," >/dev/null; then :
524 else
525 SKIP_NEXT="YES"
526 fi
527
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]528 # does this test use a proxy?
529 if [ "X$1" = "X-p" ]; then
530 PXY_CMD="$2"
531 shift 2
532 else
533 PXY_CMD=""
534 fi
535
536 # get commands and client output
537 SRV_CMD="$1"
538 CLI_CMD="$2"
539 CLI_EXPECT="$3"
540 shift 3
541
Hanno Becker2dd04902018-11-16 17:27:29 +0000[diff] [blame]542 # Check if server forces ciphersuite
543 FORCE_CIPHERSUITE=$(echo "$SRV_CMD" | sed -n 's/^.*force_ciphersuite=\([a-zA-Z0-9\-]*\).*$/\1/p')
544 if [ ! -z "$FORCE_CIPHERSUITE" ]; then
545 requires_ciphersuite_enabled $FORCE_CIPHERSUITE
546 fi
547
548 # Check if client forces ciphersuite
549 FORCE_CIPHERSUITE=$(echo "$CLI_CMD" | sed -n 's/^.*force_ciphersuite=\([a-zA-Z0-9\-]*\).*$/\1/p')
550 if [ ! -z "$FORCE_CIPHERSUITE" ]; then
551 requires_ciphersuite_enabled $FORCE_CIPHERSUITE
552 fi
553
554 # should we skip?
555 if [ "X$SKIP_NEXT" = "XYES" ]; then
556 SKIP_NEXT="NO"
557 echo "SKIP"
558 SKIPS=$(( $SKIPS + 1 ))
559 return
560 fi
561
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]562 # fix client port
563 if [ -n "$PXY_CMD" ]; then
564 CLI_CMD=$( echo "$CLI_CMD" | sed s/+SRV_PORT/$PXY_PORT/g )
565 else
566 CLI_CMD=$( echo "$CLI_CMD" | sed s/+SRV_PORT/$SRV_PORT/g )
567 fi
568
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]569 # update DTLS variable
570 detect_dtls "$SRV_CMD"
571
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]572 # prepend valgrind to our commands if active
573 if [ "$MEMCHECK" -gt 0 ]; then
574 if is_polar "$SRV_CMD"; then
575 SRV_CMD="valgrind --leak-check=full $SRV_CMD"
576 fi
577 if is_polar "$CLI_CMD"; then
578 CLI_CMD="valgrind --leak-check=full $CLI_CMD"
579 fi
580 fi
581
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]582 TIMES_LEFT=2
583 while [ $TIMES_LEFT -gt 0 ]; do
Manuel Pégourié-Gonnardab5f7b42015-08-04 21:01:37 +0200[diff] [blame]584 TIMES_LEFT=$(( $TIMES_LEFT - 1 ))
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]585
Manuel Pégourié-Gonnardab5f7b42015-08-04 21:01:37 +0200[diff] [blame]586 # run the commands
587 if [ -n "$PXY_CMD" ]; then
588 echo "$PXY_CMD" > $PXY_OUT
589 $PXY_CMD >> $PXY_OUT 2>&1 &
590 PXY_PID=$!
591 # assume proxy starts faster than server
592 fi
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]593
Manuel Pégourié-Gonnardab5f7b42015-08-04 21:01:37 +0200[diff] [blame]594 check_osrv_dtls
595 echo "$SRV_CMD" > $SRV_OUT
596 provide_input | $SRV_CMD >> $SRV_OUT 2>&1 &
597 SRV_PID=$!
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]598 wait_server_start "$SRV_PORT" "$SRV_PID"
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]599
Manuel Pégourié-Gonnardab5f7b42015-08-04 21:01:37 +0200[diff] [blame]600 echo "$CLI_CMD" > $CLI_OUT
601 eval "$CLI_CMD" >> $CLI_OUT 2>&1 &
602 wait_client_done
Manuel Pégourié-Gonnarde01af4c2014-03-25 14:16:44 +0100[diff] [blame]603
Hanno Beckercadb5bb2017-05-26 13:56:10 +0100[diff] [blame]604 sleep 0.05
605
Manuel Pégourié-Gonnardab5f7b42015-08-04 21:01:37 +0200[diff] [blame]606 # terminate the server (and the proxy)
607 kill $SRV_PID
608 wait $SRV_PID
Hanno Beckerd82d8462017-05-29 21:37:46 +0100[diff] [blame]609
Manuel Pégourié-Gonnardab5f7b42015-08-04 21:01:37 +0200[diff] [blame]610 if [ -n "$PXY_CMD" ]; then
611 kill $PXY_PID >/dev/null 2>&1
612 wait $PXY_PID
613 fi
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]614
Manuel Pégourié-Gonnardab5f7b42015-08-04 21:01:37 +0200[diff] [blame]615 # retry only on timeouts
616 if grep '===CLIENT_TIMEOUT===' $CLI_OUT >/dev/null; then
617 printf "RETRY "
618 else
619 TIMES_LEFT=0
620 fi
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]621 done
622
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]623 # check if the client and server went at least to the handshake stage
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]624 # (useful to avoid tests with only negative assertions and non-zero
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]625 # expected client exit to incorrectly succeed in case of catastrophic
626 # failure)
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]627 if is_polar "$SRV_CMD"; then
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]628 if grep "Performing the SSL/TLS handshake" $SRV_OUT >/dev/null; then :;
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]629 else
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]630 fail "server or client failed to reach handshake stage"
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]631 return
632 fi
633 fi
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]634 if is_polar "$CLI_CMD"; then
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]635 if grep "Performing the SSL/TLS handshake" $CLI_OUT >/dev/null; then :;
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]636 else
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]637 fail "server or client failed to reach handshake stage"
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]638 return
639 fi
640 fi
641
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]642 # check server exit code
643 if [ $? != 0 ]; then
644 fail "server fail"
645 return
646 fi
647
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]648 # check client exit code
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]649 if [ \( "$CLI_EXPECT" = 0 -a "$CLI_EXIT" != 0 \) -o \
650 \( "$CLI_EXPECT" != 0 -a "$CLI_EXIT" = 0 \) ]
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]651 then
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]652 fail "bad client exit code (expected $CLI_EXPECT, got $CLI_EXIT)"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]653 return
654 fi
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]655
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]656 # check other assertions
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]657 # lines beginning with == are added by valgrind, ignore them
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]658 # lines with 'Serious error when reading debug info', are valgrind issues as well
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]659 while [ $# -gt 0 ]
660 do
661 case $1 in
662 "-s")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]663 if grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then :; else
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]664 fail "pattern '$2' MUST be present in the Server output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]665 return
666 fi
667 ;;
668
669 "-c")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]670 if grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then :; else
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]671 fail "pattern '$2' MUST be present in the Client output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]672 return
673 fi
674 ;;
675
676 "-S")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]677 if grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]678 fail "pattern '$2' MUST NOT be present in the Server output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]679 return
680 fi
681 ;;
682
683 "-C")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]684 if grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]685 fail "pattern '$2' MUST NOT be present in the Client output"
686 return
687 fi
688 ;;
689
690 # The filtering in the following two options (-u and -U) do the following
691 # - ignore valgrind output
692 # - filter out everything but lines right after the pattern occurances
693 # - keep one of each non-unique line
694 # - count how many lines remain
695 # A line with '--' will remain in the result from previous outputs, so the number of lines in the result will be 1
696 # if there were no duplicates.
697 "-U")
698 if [ $(grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep -A1 "$2" | grep -v "$2" | sort | uniq -d | wc -l) -gt 1 ]; then
699 fail "lines following pattern '$2' must be unique in Server output"
700 return
701 fi
702 ;;
703
704 "-u")
705 if [ $(grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep -A1 "$2" | grep -v "$2" | sort | uniq -d | wc -l) -gt 1 ]; then
706 fail "lines following pattern '$2' must be unique in Client output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]707 return
708 fi
709 ;;
Andres Amaya Garcia93993de2017-09-06 15:38:07 +0100[diff] [blame]710 "-F")
711 if ! $2 "$SRV_OUT"; then
712 fail "function call to '$2' failed on Server output"
713 return
714 fi
715 ;;
716 "-f")
717 if ! $2 "$CLI_OUT"; then
718 fail "function call to '$2' failed on Client output"
719 return
720 fi
721 ;;
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]722
723 *)
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]724 echo "Unknown test: $1" >&2
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]725 exit 1
726 esac
727 shift 2
728 done
729
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]730 # check valgrind's results
731 if [ "$MEMCHECK" -gt 0 ]; then
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]732 if is_polar "$SRV_CMD" && has_mem_err $SRV_OUT; then
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]733 fail "Server has memory errors"
734 return
735 fi
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]736 if is_polar "$CLI_CMD" && has_mem_err $CLI_OUT; then
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]737 fail "Client has memory errors"
738 return
739 fi
740 fi
741
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]742 # if we're here, everything is ok
743 echo "PASS"
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]744 if [ "$PRESERVE_LOGS" -gt 0 ]; then
745 mv $SRV_OUT o-srv-${TESTS}.log
746 mv $CLI_OUT o-cli-${TESTS}.log
Hanno Becker7be2e5b2018-08-20 12:21:35 +0100[diff] [blame]747 if [ -n "$PXY_CMD" ]; then
748 mv $PXY_OUT o-pxy-${TESTS}.log
749 fi
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]750 fi
751
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]752 rm -f $SRV_OUT $CLI_OUT $PXY_OUT
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]753}
754
Hanno Beckerf43177d2018-11-16 17:28:40 +0000[diff] [blame]755run_test_psa() {
756 requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
757 run_test "Default, PSA ($1)" \
758 "$P_SRV debug_level=1 force_version=tls1_2" \
759 "$P_CLI debug_level=1 force_version=tls1_2 force_ciphersuite=$1" \
760 0 \
761 -c "Successfully setup PSA-based decryption cipher context" \
762 -c "Successfully setup PSA-based encryption cipher context" \
763 -s "Successfully setup PSA-based decryption cipher context" \
764 -s "Successfully setup PSA-based encryption cipher context" \
765 -C "Failed to setup PSA-based cipher context"\
766 -S "Failed to setup PSA-based cipher context"\
767 -s "Protocol is TLSv1.2" \
768 -S "error" \
769 -C "error"
770}
771
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]772cleanup() {
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]773 rm -f $CLI_OUT $SRV_OUT $PXY_OUT $SESSION
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]774 test -n "${SRV_PID:-}" && kill $SRV_PID >/dev/null 2>&1
775 test -n "${PXY_PID:-}" && kill $PXY_PID >/dev/null 2>&1
776 test -n "${CLI_PID:-}" && kill $CLI_PID >/dev/null 2>&1
777 test -n "${DOG_PID:-}" && kill $DOG_PID >/dev/null 2>&1
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]778 exit 1
779}
780
Manuel Pégourié-Gonnard9dea8bd2014-02-26 18:21:02 +0100[diff] [blame]781#
782# MAIN
783#
784
Manuel Pégourié-Gonnard913030c2014-03-28 10:12:38 +0100[diff] [blame]785get_options "$@"
786
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]787# sanity checks, avoid an avalanche of errors
Hanno Becker4ac73e72017-10-23 15:27:37 +0100[diff] [blame]788P_SRV_BIN="${P_SRV%%[ ]*}"
789P_CLI_BIN="${P_CLI%%[ ]*}"
790P_PXY_BIN="${P_PXY%%[ ]*}"
Hanno Becker17c04932017-10-10 14:44:53 +0100[diff] [blame]791if [ ! -x "$P_SRV_BIN" ]; then
792 echo "Command '$P_SRV_BIN' is not an executable file"
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]793 exit 1
794fi
Hanno Becker17c04932017-10-10 14:44:53 +0100[diff] [blame]795if [ ! -x "$P_CLI_BIN" ]; then
796 echo "Command '$P_CLI_BIN' is not an executable file"
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]797 exit 1
798fi
Hanno Becker17c04932017-10-10 14:44:53 +0100[diff] [blame]799if [ ! -x "$P_PXY_BIN" ]; then
800 echo "Command '$P_PXY_BIN' is not an executable file"
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]801 exit 1
802fi
Simon Butcher3c0d7b82016-05-23 11:13:17 +0100[diff] [blame]803if [ "$MEMCHECK" -gt 0 ]; then
804 if which valgrind >/dev/null 2>&1; then :; else
805 echo "Memcheck not possible. Valgrind not found"
806 exit 1
807 fi
808fi
Manuel Pégourié-Gonnard74faf3c2014-03-13 18:47:44 +0100[diff] [blame]809if which $OPENSSL_CMD >/dev/null 2>&1; then :; else
810 echo "Command '$OPENSSL_CMD' not found"
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]811 exit 1
812fi
813
Manuel Pégourié-Gonnard32f8f4d2014-05-29 11:31:20 +0200[diff] [blame]814# used by watchdog
815MAIN_PID="$$"
816
Manuel Pégourié-Gonnard0d225da2018-01-22 10:22:09 +0100[diff] [blame]817# We use somewhat arbitrary delays for tests:
818# - how long do we wait for the server to start (when lsof not available)?
819# - how long do we allow for the client to finish?
820# (not to check performance, just to avoid waiting indefinitely)
821# Things are slower with valgrind, so give extra time here.
822#
823# Note: without lsof, there is a trade-off between the running time of this
824# script and the risk of spurious errors because we didn't wait long enough.
825# The watchdog delay on the other hand doesn't affect normal running time of
826# the script, only the case where a client or server gets stuck.
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]827if [ "$MEMCHECK" -gt 0 ]; then
Manuel Pégourié-Gonnard0d225da2018-01-22 10:22:09 +0100[diff] [blame]828 START_DELAY=6
829 DOG_DELAY=60
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]830else
Manuel Pégourié-Gonnard0d225da2018-01-22 10:22:09 +0100[diff] [blame]831 START_DELAY=2
832 DOG_DELAY=20
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]833fi
Manuel Pégourié-Gonnard0d225da2018-01-22 10:22:09 +0100[diff] [blame]834
835# some particular tests need more time:
836# - for the client, we multiply the usual watchdog limit by a factor
837# - for the server, we sleep for a number of seconds after the client exits
838# see client_need_more_time() and server_needs_more_time()
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]839CLI_DELAY_FACTOR=1
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]840SRV_DELAY_SECONDS=0
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]841
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]842# fix commands to use this port, force IPv4 while at it
Manuel Pégourié-Gonnard0af1ba32015-01-21 11:44:33 +0000[diff] [blame]843# +SRV_PORT will be replaced by either $SRV_PORT or $PXY_PORT later
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]844P_SRV="$P_SRV server_addr=127.0.0.1 server_port=$SRV_PORT"
845P_CLI="$P_CLI server_addr=127.0.0.1 server_port=+SRV_PORT"
Andres AGf04f54d2016-10-10 15:46:20 +0100[diff] [blame]846P_PXY="$P_PXY server_addr=127.0.0.1 server_port=$SRV_PORT listen_addr=127.0.0.1 listen_port=$PXY_PORT ${SEED:+"seed=$SEED"}"
Manuel Pégourié-Gonnard61957672015-06-18 17:54:58 +0200[diff] [blame]847O_SRV="$O_SRV -accept $SRV_PORT -dhparam data_files/dhparams.pem"
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]848O_CLI="$O_CLI -connect localhost:+SRV_PORT"
849G_SRV="$G_SRV -p $SRV_PORT"
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]850G_CLI="$G_CLI -p +SRV_PORT"
Manuel Pégourié-Gonnard8066b812014-05-28 22:59:30 +0200[diff] [blame]851
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]852if [ -n "${OPENSSL_LEGACY:-}" ]; then
853 O_LEGACY_SRV="$O_LEGACY_SRV -accept $SRV_PORT -dhparam data_files/dhparams.pem"
854 O_LEGACY_CLI="$O_LEGACY_CLI -connect localhost:+SRV_PORT"
855fi
856
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]857if [ -n "${GNUTLS_NEXT_SERV:-}" ]; then
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]858 G_NEXT_SRV="$G_NEXT_SRV -p $SRV_PORT"
859fi
860
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]861if [ -n "${GNUTLS_NEXT_CLI:-}" ]; then
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]862 G_NEXT_CLI="$G_NEXT_CLI -p +SRV_PORT"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]863fi
Manuel Pégourié-Gonnardc1da6642014-02-25 14:18:30 +0100[diff] [blame]864
Gilles Peskine62469d92017-05-10 10:13:59 +0200[diff] [blame]865# Allow SHA-1, because many of our test certificates use it
866P_SRV="$P_SRV allow_sha1=1"
867P_CLI="$P_CLI allow_sha1=1"
868
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]869# Also pick a unique name for intermediate files
870SRV_OUT="srv_out.$$"
871CLI_OUT="cli_out.$$"
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]872PXY_OUT="pxy_out.$$"
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]873SESSION="session.$$"
874
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]875SKIP_NEXT="NO"
876
Manuel Pégourié-Gonnardc1da6642014-02-25 14:18:30 +0100[diff] [blame]877trap cleanup INT TERM HUP
878
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]879# Basic test
880
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]881# Checks that:
882# - things work with all ciphersuites active (used with config-full in all.sh)
883# - the expected (highest security) parameters are selected
884# ("signature_algorithm ext: 6" means SHA-512 (highest common hash))
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]885run_test "Default" \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]886 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]887 "$P_CLI" \
888 0 \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]889 -s "Protocol is TLSv1.2" \
Manuel Pégourié-Gonnardce66d5e2018-06-14 11:11:15 +0200[diff] [blame]890 -s "Ciphersuite is TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256" \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]891 -s "client hello v3, signature_algorithm ext: 6" \
892 -s "ECDHE curve: secp521r1" \
893 -S "error" \
894 -C "error"
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]895
Manuel Pégourié-Gonnard3bb08012015-01-22 13:34:21 +0000[diff] [blame]896run_test "Default, DTLS" \
897 "$P_SRV dtls=1" \
898 "$P_CLI dtls=1" \
899 0 \
900 -s "Protocol is DTLSv1.2" \
Manuel Pégourié-Gonnardce66d5e2018-06-14 11:11:15 +0200[diff] [blame]901 -s "Ciphersuite is TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256"
Manuel Pégourié-Gonnard3bb08012015-01-22 13:34:21 +0000[diff] [blame]902
Hanno Beckerf43177d2018-11-16 17:28:40 +0000[diff] [blame]903# Test ciphersuites which we expect to be fully supported by PSA Crypto
904# and check that we don't fall back to Mbed TLS' internal crypto primitives.
905run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CCM
906run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8
907run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CCM
908run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CCM-8
909run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256
910run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384
911run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA
912run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256
913run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384
914
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]915# Test current time in ServerHello
916requires_config_enabled MBEDTLS_HAVE_TIME
Manuel Pégourié-Gonnardce66d5e2018-06-14 11:11:15 +0200[diff] [blame]917run_test "ServerHello contains gmt_unix_time" \
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]918 "$P_SRV debug_level=3" \
919 "$P_CLI debug_level=3" \
920 0 \
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]921 -f "check_server_hello_time" \
922 -F "check_server_hello_time"
923
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]924# Test for uniqueness of IVs in AEAD ciphersuites
925run_test "Unique IV in GCM" \
926 "$P_SRV exchanges=20 debug_level=4" \
927 "$P_CLI exchanges=20 debug_level=4 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
928 0 \
929 -u "IV used" \
930 -U "IV used"
931
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]932# Tests for rc4 option
933
Simon Butchera410af52016-05-19 22:12:18 +0100[diff] [blame]934requires_config_enabled MBEDTLS_REMOVE_ARC4_CIPHERSUITES
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]935run_test "RC4: server disabled, client enabled" \
936 "$P_SRV" \
937 "$P_CLI force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
938 1 \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]939 -s "SSL - The server has no ciphersuites in common"
940
Simon Butchera410af52016-05-19 22:12:18 +0100[diff] [blame]941requires_config_enabled MBEDTLS_REMOVE_ARC4_CIPHERSUITES
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]942run_test "RC4: server half, client enabled" \
943 "$P_SRV arc4=1" \
944 "$P_CLI force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
945 1 \
946 -s "SSL - The server has no ciphersuites in common"
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]947
948run_test "RC4: server enabled, client disabled" \
949 "$P_SRV force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
950 "$P_CLI" \
951 1 \
952 -s "SSL - The server has no ciphersuites in common"
953
954run_test "RC4: both enabled" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]955 "$P_SRV force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]956 "$P_CLI force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
957 0 \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]958 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]959 -S "SSL - The server has no ciphersuites in common"
960
Hanno Beckerd26bb202018-08-17 09:54:10 +0100[diff] [blame]961# Test empty CA list in CertificateRequest in TLS 1.1 and earlier
962
963requires_gnutls
964requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
965run_test "CertificateRequest with empty CA list, TLS 1.1 (GnuTLS server)" \
966 "$G_SRV"\
967 "$P_CLI force_version=tls1_1" \
968 0
969
970requires_gnutls
971requires_config_enabled MBEDTLS_SSL_PROTO_TLS1
972run_test "CertificateRequest with empty CA list, TLS 1.0 (GnuTLS server)" \
973 "$G_SRV"\
974 "$P_CLI force_version=tls1" \
975 0
976
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]977# Tests for SHA-1 support
978
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]979requires_config_disabled MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]980run_test "SHA-1 forbidden by default in server certificate" \
981 "$P_SRV key_file=data_files/server2.key crt_file=data_files/server2.crt" \
982 "$P_CLI debug_level=2 allow_sha1=0" \
983 1 \
984 -c "The certificate is signed with an unacceptable hash"
985
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]986requires_config_enabled MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
987run_test "SHA-1 forbidden by default in server certificate" \
988 "$P_SRV key_file=data_files/server2.key crt_file=data_files/server2.crt" \
989 "$P_CLI debug_level=2 allow_sha1=0" \
990 0
991
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]992run_test "SHA-1 explicitly allowed in server certificate" \
993 "$P_SRV key_file=data_files/server2.key crt_file=data_files/server2.crt" \
994 "$P_CLI allow_sha1=1" \
995 0
996
997run_test "SHA-256 allowed by default in server certificate" \
998 "$P_SRV key_file=data_files/server2.key crt_file=data_files/server2-sha256.crt" \
999 "$P_CLI allow_sha1=0" \
1000 0
1001
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]1002requires_config_disabled MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]1003run_test "SHA-1 forbidden by default in client certificate" \
1004 "$P_SRV auth_mode=required allow_sha1=0" \
1005 "$P_CLI key_file=data_files/cli-rsa.key crt_file=data_files/cli-rsa-sha1.crt" \
1006 1 \
1007 -s "The certificate is signed with an unacceptable hash"
1008
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]1009requires_config_enabled MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
1010run_test "SHA-1 forbidden by default in client certificate" \
1011 "$P_SRV auth_mode=required allow_sha1=0" \
1012 "$P_CLI key_file=data_files/cli-rsa.key crt_file=data_files/cli-rsa-sha1.crt" \
1013 0
1014
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]1015run_test "SHA-1 explicitly allowed in client certificate" \
1016 "$P_SRV auth_mode=required allow_sha1=1" \
1017 "$P_CLI key_file=data_files/cli-rsa.key crt_file=data_files/cli-rsa-sha1.crt" \
1018 0
1019
1020run_test "SHA-256 allowed by default in client certificate" \
1021 "$P_SRV auth_mode=required allow_sha1=0" \
1022 "$P_CLI key_file=data_files/cli-rsa.key crt_file=data_files/cli-rsa-sha256.crt" \
1023 0
1024
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]1025# Tests for datagram packing
1026run_test "DTLS: multiple records in same datagram, client and server" \
1027 "$P_SRV dtls=1 dgram_packing=1 debug_level=2" \
1028 "$P_CLI dtls=1 dgram_packing=1 debug_level=2" \
1029 0 \
1030 -c "next record in same datagram" \
1031 -s "next record in same datagram"
1032
1033run_test "DTLS: multiple records in same datagram, client only" \
1034 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
1035 "$P_CLI dtls=1 dgram_packing=1 debug_level=2" \
1036 0 \
1037 -s "next record in same datagram" \
1038 -C "next record in same datagram"
1039
1040run_test "DTLS: multiple records in same datagram, server only" \
1041 "$P_SRV dtls=1 dgram_packing=1 debug_level=2" \
1042 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
1043 0 \
1044 -S "next record in same datagram" \
1045 -c "next record in same datagram"
1046
1047run_test "DTLS: multiple records in same datagram, neither client nor server" \
1048 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
1049 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
1050 0 \
1051 -S "next record in same datagram" \
1052 -C "next record in same datagram"
1053
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1054# Tests for Truncated HMAC extension
1055
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1056run_test "Truncated HMAC: client default, server default" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1057 "$P_SRV debug_level=4" \
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1058 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1059 0 \
Hanno Becker992b6872017-11-09 18:57:39 +0000[diff] [blame]1060 -s "dumping 'expected mac' (20 bytes)" \
1061 -S "dumping 'expected mac' (10 bytes)"
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1062
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]1063requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1064run_test "Truncated HMAC: client disabled, server default" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1065 "$P_SRV debug_level=4" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]1066 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=0" \
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1067 0 \
Hanno Becker992b6872017-11-09 18:57:39 +0000[diff] [blame]1068 -s "dumping 'expected mac' (20 bytes)" \
1069 -S "dumping 'expected mac' (10 bytes)"
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1070
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]1071requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1072run_test "Truncated HMAC: client enabled, server default" \
1073 "$P_SRV debug_level=4" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]1074 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1075 0 \
Hanno Becker992b6872017-11-09 18:57:39 +0000[diff] [blame]1076 -s "dumping 'expected mac' (20 bytes)" \
1077 -S "dumping 'expected mac' (10 bytes)"
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1078
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]1079requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1080run_test "Truncated HMAC: client enabled, server disabled" \
1081 "$P_SRV debug_level=4 trunc_hmac=0" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]1082 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1083 0 \
Hanno Becker992b6872017-11-09 18:57:39 +0000[diff] [blame]1084 -s "dumping 'expected mac' (20 bytes)" \
1085 -S "dumping 'expected mac' (10 bytes)"
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1086
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]1087requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Hanno Becker34d0c3f2017-11-17 15:46:24 +0000[diff] [blame]1088run_test "Truncated HMAC: client disabled, server enabled" \
1089 "$P_SRV debug_level=4 trunc_hmac=1" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]1090 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=0" \
Hanno Becker34d0c3f2017-11-17 15:46:24 +0000[diff] [blame]1091 0 \
1092 -s "dumping 'expected mac' (20 bytes)" \
1093 -S "dumping 'expected mac' (10 bytes)"
1094
1095requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1096run_test "Truncated HMAC: client enabled, server enabled" \
1097 "$P_SRV debug_level=4 trunc_hmac=1" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]1098 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]1099 0 \
Hanno Becker992b6872017-11-09 18:57:39 +0000[diff] [blame]1100 -S "dumping 'expected mac' (20 bytes)" \
1101 -s "dumping 'expected mac' (10 bytes)"
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]1102
Hanno Becker4c4f4102017-11-10 09:16:05 +0000[diff] [blame]1103run_test "Truncated HMAC, DTLS: client default, server default" \
1104 "$P_SRV dtls=1 debug_level=4" \
1105 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
1106 0 \
1107 -s "dumping 'expected mac' (20 bytes)" \
1108 -S "dumping 'expected mac' (10 bytes)"
1109
1110requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
1111run_test "Truncated HMAC, DTLS: client disabled, server default" \
1112 "$P_SRV dtls=1 debug_level=4" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]1113 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=0" \
Hanno Becker4c4f4102017-11-10 09:16:05 +0000[diff] [blame]1114 0 \
1115 -s "dumping 'expected mac' (20 bytes)" \
1116 -S "dumping 'expected mac' (10 bytes)"
1117
1118requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
1119run_test "Truncated HMAC, DTLS: client enabled, server default" \
1120 "$P_SRV dtls=1 debug_level=4" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]1121 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Hanno Becker4c4f4102017-11-10 09:16:05 +0000[diff] [blame]1122 0 \
1123 -s "dumping 'expected mac' (20 bytes)" \
1124 -S "dumping 'expected mac' (10 bytes)"
1125
1126requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
1127run_test "Truncated HMAC, DTLS: client enabled, server disabled" \
1128 "$P_SRV dtls=1 debug_level=4 trunc_hmac=0" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]1129 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Hanno Becker4c4f4102017-11-10 09:16:05 +0000[diff] [blame]1130 0 \
1131 -s "dumping 'expected mac' (20 bytes)" \
1132 -S "dumping 'expected mac' (10 bytes)"
1133
1134requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
1135run_test "Truncated HMAC, DTLS: client disabled, server enabled" \
1136 "$P_SRV dtls=1 debug_level=4 trunc_hmac=1" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]1137 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=0" \
Hanno Becker4c4f4102017-11-10 09:16:05 +0000[diff] [blame]1138 0 \
1139 -s "dumping 'expected mac' (20 bytes)" \
1140 -S "dumping 'expected mac' (10 bytes)"
1141
1142requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
1143run_test "Truncated HMAC, DTLS: client enabled, server enabled" \
1144 "$P_SRV dtls=1 debug_level=4 trunc_hmac=1" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]1145 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1146 0 \
1147 -S "dumping 'expected mac' (20 bytes)" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]1148 -s "dumping 'expected mac' (10 bytes)"
1149
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1150# Tests for Encrypt-then-MAC extension
1151
1152run_test "Encrypt then MAC: default" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]1153 "$P_SRV debug_level=3 \
1154 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1155 "$P_CLI debug_level=3" \
1156 0 \
1157 -c "client hello, adding encrypt_then_mac extension" \
1158 -s "found encrypt then mac extension" \
1159 -s "server hello, adding encrypt then mac extension" \
1160 -c "found encrypt_then_mac extension" \
1161 -c "using encrypt then mac" \
1162 -s "using encrypt then mac"
1163
1164run_test "Encrypt then MAC: client enabled, server disabled" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]1165 "$P_SRV debug_level=3 etm=0 \
1166 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1167 "$P_CLI debug_level=3 etm=1" \
1168 0 \
1169 -c "client hello, adding encrypt_then_mac extension" \
1170 -s "found encrypt then mac extension" \
1171 -S "server hello, adding encrypt then mac extension" \
1172 -C "found encrypt_then_mac extension" \
1173 -C "using encrypt then mac" \
1174 -S "using encrypt then mac"
1175
Manuel Pégourié-Gonnard78e745f2014-11-04 15:44:06 +0100[diff] [blame]1176run_test "Encrypt then MAC: client enabled, aead cipher" \
1177 "$P_SRV debug_level=3 etm=1 \
1178 force_ciphersuite=TLS-RSA-WITH-AES-128-GCM-SHA256" \
1179 "$P_CLI debug_level=3 etm=1" \
1180 0 \
1181 -c "client hello, adding encrypt_then_mac extension" \
1182 -s "found encrypt then mac extension" \
1183 -S "server hello, adding encrypt then mac extension" \
1184 -C "found encrypt_then_mac extension" \
1185 -C "using encrypt then mac" \
1186 -S "using encrypt then mac"
1187
1188run_test "Encrypt then MAC: client enabled, stream cipher" \
1189 "$P_SRV debug_level=3 etm=1 \
1190 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]1191 "$P_CLI debug_level=3 etm=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard78e745f2014-11-04 15:44:06 +0100[diff] [blame]1192 0 \
1193 -c "client hello, adding encrypt_then_mac extension" \
1194 -s "found encrypt then mac extension" \
1195 -S "server hello, adding encrypt then mac extension" \
1196 -C "found encrypt_then_mac extension" \
1197 -C "using encrypt then mac" \
1198 -S "using encrypt then mac"
1199
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1200run_test "Encrypt then MAC: client disabled, server enabled" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]1201 "$P_SRV debug_level=3 etm=1 \
1202 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1203 "$P_CLI debug_level=3 etm=0" \
1204 0 \
1205 -C "client hello, adding encrypt_then_mac extension" \
1206 -S "found encrypt then mac extension" \
1207 -S "server hello, adding encrypt then mac extension" \
1208 -C "found encrypt_then_mac extension" \
1209 -C "using encrypt then mac" \
1210 -S "using encrypt then mac"
1211
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]1212requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1213run_test "Encrypt then MAC: client SSLv3, server enabled" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]1214 "$P_SRV debug_level=3 min_version=ssl3 \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]1215 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1216 "$P_CLI debug_level=3 force_version=ssl3" \
1217 0 \
1218 -C "client hello, adding encrypt_then_mac extension" \
1219 -S "found encrypt then mac extension" \
1220 -S "server hello, adding encrypt then mac extension" \
1221 -C "found encrypt_then_mac extension" \
1222 -C "using encrypt then mac" \
1223 -S "using encrypt then mac"
1224
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]1225requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1226run_test "Encrypt then MAC: client enabled, server SSLv3" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]1227 "$P_SRV debug_level=3 force_version=ssl3 \
1228 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]1229 "$P_CLI debug_level=3 min_version=ssl3" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1230 0 \
1231 -c "client hello, adding encrypt_then_mac extension" \
Janos Follath00efff72016-05-06 13:48:23 +0100[diff] [blame]1232 -S "found encrypt then mac extension" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1233 -S "server hello, adding encrypt then mac extension" \
1234 -C "found encrypt_then_mac extension" \
1235 -C "using encrypt then mac" \
1236 -S "using encrypt then mac"
1237
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]1238# Tests for Extended Master Secret extension
1239
1240run_test "Extended Master Secret: default" \
1241 "$P_SRV debug_level=3" \
1242 "$P_CLI debug_level=3" \
1243 0 \
1244 -c "client hello, adding extended_master_secret extension" \
1245 -s "found extended master secret extension" \
1246 -s "server hello, adding extended master secret extension" \
1247 -c "found extended_master_secret extension" \
1248 -c "using extended master secret" \
1249 -s "using extended master secret"
1250
1251run_test "Extended Master Secret: client enabled, server disabled" \
1252 "$P_SRV debug_level=3 extended_ms=0" \
1253 "$P_CLI debug_level=3 extended_ms=1" \
1254 0 \
1255 -c "client hello, adding extended_master_secret extension" \
1256 -s "found extended master secret extension" \
1257 -S "server hello, adding extended master secret extension" \
1258 -C "found extended_master_secret extension" \
1259 -C "using extended master secret" \
1260 -S "using extended master secret"
1261
1262run_test "Extended Master Secret: client disabled, server enabled" \
1263 "$P_SRV debug_level=3 extended_ms=1" \
1264 "$P_CLI debug_level=3 extended_ms=0" \
1265 0 \
1266 -C "client hello, adding extended_master_secret extension" \
1267 -S "found extended master secret extension" \
1268 -S "server hello, adding extended master secret extension" \
1269 -C "found extended_master_secret extension" \
1270 -C "using extended master secret" \
1271 -S "using extended master secret"
1272
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]1273requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]1274run_test "Extended Master Secret: client SSLv3, server enabled" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]1275 "$P_SRV debug_level=3 min_version=ssl3" \
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]1276 "$P_CLI debug_level=3 force_version=ssl3" \
1277 0 \
1278 -C "client hello, adding extended_master_secret extension" \
1279 -S "found extended master secret extension" \
1280 -S "server hello, adding extended master secret extension" \
1281 -C "found extended_master_secret extension" \
1282 -C "using extended master secret" \
1283 -S "using extended master secret"
1284
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]1285requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]1286run_test "Extended Master Secret: client enabled, server SSLv3" \
1287 "$P_SRV debug_level=3 force_version=ssl3" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]1288 "$P_CLI debug_level=3 min_version=ssl3" \
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]1289 0 \
1290 -c "client hello, adding extended_master_secret extension" \
Janos Follath00efff72016-05-06 13:48:23 +0100[diff] [blame]1291 -S "found extended master secret extension" \
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]1292 -S "server hello, adding extended master secret extension" \
1293 -C "found extended_master_secret extension" \
1294 -C "using extended master secret" \
1295 -S "using extended master secret"
1296
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]1297# Tests for FALLBACK_SCSV
1298
1299run_test "Fallback SCSV: default" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]1300 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]1301 "$P_CLI debug_level=3 force_version=tls1_1" \
1302 0 \
1303 -C "adding FALLBACK_SCSV" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]1304 -S "received FALLBACK_SCSV" \
1305 -S "inapropriate fallback" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]1306 -C "is a fatal alert message (msg 86)"
1307
1308run_test "Fallback SCSV: explicitly disabled" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]1309 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]1310 "$P_CLI debug_level=3 force_version=tls1_1 fallback=0" \
1311 0 \
1312 -C "adding FALLBACK_SCSV" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]1313 -S "received FALLBACK_SCSV" \
1314 -S "inapropriate fallback" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]1315 -C "is a fatal alert message (msg 86)"
1316
1317run_test "Fallback SCSV: enabled" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]1318 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]1319 "$P_CLI debug_level=3 force_version=tls1_1 fallback=1" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]1320 1 \
1321 -c "adding FALLBACK_SCSV" \
1322 -s "received FALLBACK_SCSV" \
1323 -s "inapropriate fallback" \
1324 -c "is a fatal alert message (msg 86)"
1325
1326run_test "Fallback SCSV: enabled, max version" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]1327 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]1328 "$P_CLI debug_level=3 fallback=1" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]1329 0 \
1330 -c "adding FALLBACK_SCSV" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]1331 -s "received FALLBACK_SCSV" \
1332 -S "inapropriate fallback" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]1333 -C "is a fatal alert message (msg 86)"
1334
1335requires_openssl_with_fallback_scsv
1336run_test "Fallback SCSV: default, openssl server" \
1337 "$O_SRV" \
1338 "$P_CLI debug_level=3 force_version=tls1_1 fallback=0" \
1339 0 \
1340 -C "adding FALLBACK_SCSV" \
1341 -C "is a fatal alert message (msg 86)"
1342
1343requires_openssl_with_fallback_scsv
1344run_test "Fallback SCSV: enabled, openssl server" \
1345 "$O_SRV" \
1346 "$P_CLI debug_level=3 force_version=tls1_1 fallback=1" \
1347 1 \
1348 -c "adding FALLBACK_SCSV" \
1349 -c "is a fatal alert message (msg 86)"
1350
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]1351requires_openssl_with_fallback_scsv
1352run_test "Fallback SCSV: disabled, openssl client" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]1353 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]1354 "$O_CLI -tls1_1" \
1355 0 \
1356 -S "received FALLBACK_SCSV" \
1357 -S "inapropriate fallback"
1358
1359requires_openssl_with_fallback_scsv
1360run_test "Fallback SCSV: enabled, openssl client" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]1361 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]1362 "$O_CLI -tls1_1 -fallback_scsv" \
1363 1 \
1364 -s "received FALLBACK_SCSV" \
1365 -s "inapropriate fallback"
1366
1367requires_openssl_with_fallback_scsv
1368run_test "Fallback SCSV: enabled, max version, openssl client" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]1369 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]1370 "$O_CLI -fallback_scsv" \
1371 0 \
1372 -s "received FALLBACK_SCSV" \
1373 -S "inapropriate fallback"
1374
Andres Amaya Garcia4c761fa2018-07-10 20:08:04 +0100[diff] [blame]1375# Test sending and receiving empty application data records
1376
1377run_test "Encrypt then MAC: empty application data record" \
1378 "$P_SRV auth_mode=none debug_level=4 etm=1" \
1379 "$P_CLI auth_mode=none etm=1 request_size=0 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA" \
1380 0 \
1381 -S "0000: 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f" \
1382 -s "dumping 'input payload after decrypt' (0 bytes)" \
1383 -c "0 bytes written in 1 fragments"
1384
1385run_test "Default, no Encrypt then MAC: empty application data record" \
1386 "$P_SRV auth_mode=none debug_level=4 etm=0" \
1387 "$P_CLI auth_mode=none etm=0 request_size=0" \
1388 0 \
1389 -s "dumping 'input payload after decrypt' (0 bytes)" \
1390 -c "0 bytes written in 1 fragments"
1391
1392run_test "Encrypt then MAC, DTLS: empty application data record" \
1393 "$P_SRV auth_mode=none debug_level=4 etm=1 dtls=1" \
1394 "$P_CLI auth_mode=none etm=1 request_size=0 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA dtls=1" \
1395 0 \
1396 -S "0000: 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f" \
1397 -s "dumping 'input payload after decrypt' (0 bytes)" \
1398 -c "0 bytes written in 1 fragments"
1399
1400run_test "Default, no Encrypt then MAC, DTLS: empty application data record" \
1401 "$P_SRV auth_mode=none debug_level=4 etm=0 dtls=1" \
1402 "$P_CLI auth_mode=none etm=0 request_size=0 dtls=1" \
1403 0 \
1404 -s "dumping 'input payload after decrypt' (0 bytes)" \
1405 -c "0 bytes written in 1 fragments"
1406
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]1407## ClientHello generated with
1408## "openssl s_client -CAfile tests/data_files/test-ca.crt -tls1_1 -connect localhost:4433 -cipher ..."
1409## then manually twiddling the ciphersuite list.
1410## The ClientHello content is spelled out below as a hex string as
1411## "prefix ciphersuite1 ciphersuite2 ciphersuite3 ciphersuite4 suffix".
1412## The expected response is an inappropriate_fallback alert.
1413requires_openssl_with_fallback_scsv
1414run_test "Fallback SCSV: beginning of list" \
1415 "$P_SRV debug_level=2" \
1416 "$TCP_CLIENT localhost $SRV_PORT '160301003e0100003a03022aafb94308dc22ca1086c65acc00e414384d76b61ecab37df1633b1ae1034dbe000008 5600 0031 0032 0033 0100000900230000000f000101' '15030200020256'" \
1417 0 \
1418 -s "received FALLBACK_SCSV" \
1419 -s "inapropriate fallback"
1420
1421requires_openssl_with_fallback_scsv
1422run_test "Fallback SCSV: end of list" \
1423 "$P_SRV debug_level=2" \
1424 "$TCP_CLIENT localhost $SRV_PORT '160301003e0100003a03022aafb94308dc22ca1086c65acc00e414384d76b61ecab37df1633b1ae1034dbe000008 0031 0032 0033 5600 0100000900230000000f000101' '15030200020256'" \
1425 0 \
1426 -s "received FALLBACK_SCSV" \
1427 -s "inapropriate fallback"
1428
1429## Here the expected response is a valid ServerHello prefix, up to the random.
1430requires_openssl_with_fallback_scsv
1431run_test "Fallback SCSV: not in list" \
1432 "$P_SRV debug_level=2" \
1433 "$TCP_CLIENT localhost $SRV_PORT '160301003e0100003a03022aafb94308dc22ca1086c65acc00e414384d76b61ecab37df1633b1ae1034dbe000008 0056 0031 0032 0033 0100000900230000000f000101' '16030200300200002c0302'" \
1434 0 \
1435 -S "received FALLBACK_SCSV" \
1436 -S "inapropriate fallback"
1437
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]1438# Tests for CBC 1/n-1 record splitting
1439
1440run_test "CBC Record splitting: TLS 1.2, no splitting" \
1441 "$P_SRV" \
1442 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
1443 request_size=123 force_version=tls1_2" \
1444 0 \
1445 -s "Read from client: 123 bytes read" \
1446 -S "Read from client: 1 bytes read" \
1447 -S "122 bytes read"
1448
1449run_test "CBC Record splitting: TLS 1.1, no splitting" \
1450 "$P_SRV" \
1451 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
1452 request_size=123 force_version=tls1_1" \
1453 0 \
1454 -s "Read from client: 123 bytes read" \
1455 -S "Read from client: 1 bytes read" \
1456 -S "122 bytes read"
1457
1458run_test "CBC Record splitting: TLS 1.0, splitting" \
1459 "$P_SRV" \
1460 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
1461 request_size=123 force_version=tls1" \
1462 0 \
1463 -S "Read from client: 123 bytes read" \
1464 -s "Read from client: 1 bytes read" \
1465 -s "122 bytes read"
1466
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]1467requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]1468run_test "CBC Record splitting: SSLv3, splitting" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]1469 "$P_SRV min_version=ssl3" \
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]1470 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
1471 request_size=123 force_version=ssl3" \
1472 0 \
1473 -S "Read from client: 123 bytes read" \
1474 -s "Read from client: 1 bytes read" \
1475 -s "122 bytes read"
1476
1477run_test "CBC Record splitting: TLS 1.0 RC4, no splitting" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]1478 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]1479 "$P_CLI force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
1480 request_size=123 force_version=tls1" \
1481 0 \
1482 -s "Read from client: 123 bytes read" \
1483 -S "Read from client: 1 bytes read" \
1484 -S "122 bytes read"
1485
1486run_test "CBC Record splitting: TLS 1.0, splitting disabled" \
1487 "$P_SRV" \
1488 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
1489 request_size=123 force_version=tls1 recsplit=0" \
1490 0 \
1491 -s "Read from client: 123 bytes read" \
1492 -S "Read from client: 1 bytes read" \
1493 -S "122 bytes read"
1494
Manuel Pégourié-Gonnarda852cf42015-01-13 20:56:15 +0100[diff] [blame]1495run_test "CBC Record splitting: TLS 1.0, splitting, nbio" \
1496 "$P_SRV nbio=2" \
1497 "$P_CLI nbio=2 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
1498 request_size=123 force_version=tls1" \
1499 0 \
1500 -S "Read from client: 123 bytes read" \
1501 -s "Read from client: 1 bytes read" \
1502 -s "122 bytes read"
1503
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1504# Tests for Session Tickets
1505
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1506run_test "Session resume using tickets: basic" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1507 "$P_SRV debug_level=3 tickets=1" \
1508 "$P_CLI debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]1509 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]1510 -c "client hello, adding session ticket extension" \
1511 -s "found session ticket extension" \
1512 -s "server hello, adding session ticket extension" \
1513 -c "found session_ticket extension" \
1514 -c "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]1515 -S "session successfully restored from cache" \
1516 -s "session successfully restored from ticket" \
1517 -s "a session has been resumed" \
1518 -c "a session has been resumed"
1519
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1520run_test "Session resume using tickets: cache disabled" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1521 "$P_SRV debug_level=3 tickets=1 cache_max=0" \
1522 "$P_CLI debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnarddbe1ee12014-02-21 09:18:13 +0100[diff] [blame]1523 0 \
1524 -c "client hello, adding session ticket extension" \
1525 -s "found session ticket extension" \
1526 -s "server hello, adding session ticket extension" \
1527 -c "found session_ticket extension" \
1528 -c "parse new session ticket" \
1529 -S "session successfully restored from cache" \
1530 -s "session successfully restored from ticket" \
1531 -s "a session has been resumed" \
1532 -c "a session has been resumed"
1533
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1534run_test "Session resume using tickets: timeout" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1535 "$P_SRV debug_level=3 tickets=1 cache_max=0 ticket_timeout=1" \
1536 "$P_CLI debug_level=3 tickets=1 reconnect=1 reco_delay=2" \
Manuel Pégourié-Gonnarddbe1ee12014-02-21 09:18:13 +0100[diff] [blame]1537 0 \
1538 -c "client hello, adding session ticket extension" \
1539 -s "found session ticket extension" \
1540 -s "server hello, adding session ticket extension" \
1541 -c "found session_ticket extension" \
1542 -c "parse new session ticket" \
1543 -S "session successfully restored from cache" \
1544 -S "session successfully restored from ticket" \
1545 -S "a session has been resumed" \
1546 -C "a session has been resumed"
1547
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1548run_test "Session resume using tickets: openssl server" \
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]1549 "$O_SRV" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1550 "$P_CLI debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]1551 0 \
1552 -c "client hello, adding session ticket extension" \
1553 -c "found session_ticket extension" \
1554 -c "parse new session ticket" \
1555 -c "a session has been resumed"
1556
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1557run_test "Session resume using tickets: openssl client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1558 "$P_SRV debug_level=3 tickets=1" \
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1559 "( $O_CLI -sess_out $SESSION; \
1560 $O_CLI -sess_in $SESSION; \
1561 rm -f $SESSION )" \
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]1562 0 \
1563 -s "found session ticket extension" \
1564 -s "server hello, adding session ticket extension" \
1565 -S "session successfully restored from cache" \
1566 -s "session successfully restored from ticket" \
1567 -s "a session has been resumed"
1568
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]1569# Tests for Session Tickets with DTLS
1570
1571run_test "Session resume using tickets, DTLS: basic" \
1572 "$P_SRV debug_level=3 dtls=1 tickets=1" \
1573 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1" \
1574 0 \
1575 -c "client hello, adding session ticket extension" \
1576 -s "found session ticket extension" \
1577 -s "server hello, adding session ticket extension" \
1578 -c "found session_ticket extension" \
1579 -c "parse new session ticket" \
1580 -S "session successfully restored from cache" \
1581 -s "session successfully restored from ticket" \
1582 -s "a session has been resumed" \
1583 -c "a session has been resumed"
1584
1585run_test "Session resume using tickets, DTLS: cache disabled" \
1586 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0" \
1587 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1" \
1588 0 \
1589 -c "client hello, adding session ticket extension" \
1590 -s "found session ticket extension" \
1591 -s "server hello, adding session ticket extension" \
1592 -c "found session_ticket extension" \
1593 -c "parse new session ticket" \
1594 -S "session successfully restored from cache" \
1595 -s "session successfully restored from ticket" \
1596 -s "a session has been resumed" \
1597 -c "a session has been resumed"
1598
1599run_test "Session resume using tickets, DTLS: timeout" \
1600 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0 ticket_timeout=1" \
1601 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 reco_delay=2" \
1602 0 \
1603 -c "client hello, adding session ticket extension" \
1604 -s "found session ticket extension" \
1605 -s "server hello, adding session ticket extension" \
1606 -c "found session_ticket extension" \
1607 -c "parse new session ticket" \
1608 -S "session successfully restored from cache" \
1609 -S "session successfully restored from ticket" \
1610 -S "a session has been resumed" \
1611 -C "a session has been resumed"
1612
1613run_test "Session resume using tickets, DTLS: openssl server" \
1614 "$O_SRV -dtls1" \
1615 "$P_CLI dtls=1 debug_level=3 tickets=1 reconnect=1" \
1616 0 \
1617 -c "client hello, adding session ticket extension" \
1618 -c "found session_ticket extension" \
1619 -c "parse new session ticket" \
1620 -c "a session has been resumed"
1621
1622run_test "Session resume using tickets, DTLS: openssl client" \
1623 "$P_SRV dtls=1 debug_level=3 tickets=1" \
1624 "( $O_CLI -dtls1 -sess_out $SESSION; \
1625 $O_CLI -dtls1 -sess_in $SESSION; \
1626 rm -f $SESSION )" \
1627 0 \
1628 -s "found session ticket extension" \
1629 -s "server hello, adding session ticket extension" \
1630 -S "session successfully restored from cache" \
1631 -s "session successfully restored from ticket" \
1632 -s "a session has been resumed"
1633
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]1634# Tests for Session Resume based on session-ID and cache
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1635
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1636run_test "Session resume using cache: tickets enabled on client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1637 "$P_SRV debug_level=3 tickets=0" \
1638 "$P_CLI debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]1639 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]1640 -c "client hello, adding session ticket extension" \
1641 -s "found session ticket extension" \
1642 -S "server hello, adding session ticket extension" \
1643 -C "found session_ticket extension" \
1644 -C "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]1645 -s "session successfully restored from cache" \
1646 -S "session successfully restored from ticket" \
1647 -s "a session has been resumed" \
1648 -c "a session has been resumed"
1649
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1650run_test "Session resume using cache: tickets enabled on server" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1651 "$P_SRV debug_level=3 tickets=1" \
1652 "$P_CLI debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]1653 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]1654 -C "client hello, adding session ticket extension" \
1655 -S "found session ticket extension" \
1656 -S "server hello, adding session ticket extension" \
1657 -C "found session_ticket extension" \
1658 -C "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]1659 -s "session successfully restored from cache" \
1660 -S "session successfully restored from ticket" \
1661 -s "a session has been resumed" \
1662 -c "a session has been resumed"
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]1663
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1664run_test "Session resume using cache: cache_max=0" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1665 "$P_SRV debug_level=3 tickets=0 cache_max=0" \
1666 "$P_CLI debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]1667 0 \
1668 -S "session successfully restored from cache" \
1669 -S "session successfully restored from ticket" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]1670 -S "a session has been resumed" \
1671 -C "a session has been resumed"
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]1672
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1673run_test "Session resume using cache: cache_max=1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1674 "$P_SRV debug_level=3 tickets=0 cache_max=1" \
1675 "$P_CLI debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]1676 0 \
1677 -s "session successfully restored from cache" \
1678 -S "session successfully restored from ticket" \
1679 -s "a session has been resumed" \
1680 -c "a session has been resumed"
1681
Manuel Pégourié-Gonnard6df31962015-05-04 10:55:47 +0200[diff] [blame]1682run_test "Session resume using cache: timeout > delay" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1683 "$P_SRV debug_level=3 tickets=0" \
1684 "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_delay=0" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]1685 0 \
1686 -s "session successfully restored from cache" \
1687 -S "session successfully restored from ticket" \
1688 -s "a session has been resumed" \
1689 -c "a session has been resumed"
1690
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1691run_test "Session resume using cache: timeout < delay" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1692 "$P_SRV debug_level=3 tickets=0 cache_timeout=1" \
1693 "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_delay=2" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]1694 0 \
1695 -S "session successfully restored from cache" \
1696 -S "session successfully restored from ticket" \
1697 -S "a session has been resumed" \
1698 -C "a session has been resumed"
1699
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1700run_test "Session resume using cache: no timeout" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1701 "$P_SRV debug_level=3 tickets=0 cache_timeout=0" \
1702 "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_delay=2" \
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]1703 0 \
1704 -s "session successfully restored from cache" \
1705 -S "session successfully restored from ticket" \
1706 -s "a session has been resumed" \
1707 -c "a session has been resumed"
1708
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1709run_test "Session resume using cache: openssl client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1710 "$P_SRV debug_level=3 tickets=0" \
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1711 "( $O_CLI -sess_out $SESSION; \
1712 $O_CLI -sess_in $SESSION; \
1713 rm -f $SESSION )" \
Manuel Pégourié-Gonnarddb735f62014-02-25 17:57:59 +0100[diff] [blame]1714 0 \
1715 -s "found session ticket extension" \
1716 -S "server hello, adding session ticket extension" \
1717 -s "session successfully restored from cache" \
1718 -S "session successfully restored from ticket" \
1719 -s "a session has been resumed"
1720
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1721run_test "Session resume using cache: openssl server" \
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]1722 "$O_SRV" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1723 "$P_CLI debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnarddb735f62014-02-25 17:57:59 +0100[diff] [blame]1724 0 \
1725 -C "found session_ticket extension" \
1726 -C "parse new session ticket" \
1727 -c "a session has been resumed"
1728
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]1729# Tests for Session Resume based on session-ID and cache, DTLS
1730
1731run_test "Session resume using cache, DTLS: tickets enabled on client" \
1732 "$P_SRV dtls=1 debug_level=3 tickets=0" \
1733 "$P_CLI dtls=1 debug_level=3 tickets=1 reconnect=1" \
1734 0 \
1735 -c "client hello, adding session ticket extension" \
1736 -s "found session ticket extension" \
1737 -S "server hello, adding session ticket extension" \
1738 -C "found session_ticket extension" \
1739 -C "parse new session ticket" \
1740 -s "session successfully restored from cache" \
1741 -S "session successfully restored from ticket" \
1742 -s "a session has been resumed" \
1743 -c "a session has been resumed"
1744
1745run_test "Session resume using cache, DTLS: tickets enabled on server" \
1746 "$P_SRV dtls=1 debug_level=3 tickets=1" \
1747 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1" \
1748 0 \
1749 -C "client hello, adding session ticket extension" \
1750 -S "found session ticket extension" \
1751 -S "server hello, adding session ticket extension" \
1752 -C "found session_ticket extension" \
1753 -C "parse new session ticket" \
1754 -s "session successfully restored from cache" \
1755 -S "session successfully restored from ticket" \
1756 -s "a session has been resumed" \
1757 -c "a session has been resumed"
1758
1759run_test "Session resume using cache, DTLS: cache_max=0" \
1760 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_max=0" \
1761 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1" \
1762 0 \
1763 -S "session successfully restored from cache" \
1764 -S "session successfully restored from ticket" \
1765 -S "a session has been resumed" \
1766 -C "a session has been resumed"
1767
1768run_test "Session resume using cache, DTLS: cache_max=1" \
1769 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_max=1" \
1770 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1" \
1771 0 \
1772 -s "session successfully restored from cache" \
1773 -S "session successfully restored from ticket" \
1774 -s "a session has been resumed" \
1775 -c "a session has been resumed"
1776
1777run_test "Session resume using cache, DTLS: timeout > delay" \
1778 "$P_SRV dtls=1 debug_level=3 tickets=0" \
1779 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 reco_delay=0" \
1780 0 \
1781 -s "session successfully restored from cache" \
1782 -S "session successfully restored from ticket" \
1783 -s "a session has been resumed" \
1784 -c "a session has been resumed"
1785
1786run_test "Session resume using cache, DTLS: timeout < delay" \
1787 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_timeout=1" \
1788 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 reco_delay=2" \
1789 0 \
1790 -S "session successfully restored from cache" \
1791 -S "session successfully restored from ticket" \
1792 -S "a session has been resumed" \
1793 -C "a session has been resumed"
1794
1795run_test "Session resume using cache, DTLS: no timeout" \
1796 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_timeout=0" \
1797 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 reco_delay=2" \
1798 0 \
1799 -s "session successfully restored from cache" \
1800 -S "session successfully restored from ticket" \
1801 -s "a session has been resumed" \
1802 -c "a session has been resumed"
1803
1804run_test "Session resume using cache, DTLS: openssl client" \
1805 "$P_SRV dtls=1 debug_level=3 tickets=0" \
1806 "( $O_CLI -dtls1 -sess_out $SESSION; \
1807 $O_CLI -dtls1 -sess_in $SESSION; \
1808 rm -f $SESSION )" \
1809 0 \
1810 -s "found session ticket extension" \
1811 -S "server hello, adding session ticket extension" \
1812 -s "session successfully restored from cache" \
1813 -S "session successfully restored from ticket" \
1814 -s "a session has been resumed"
1815
1816run_test "Session resume using cache, DTLS: openssl server" \
1817 "$O_SRV -dtls1" \
1818 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1" \
1819 0 \
1820 -C "found session_ticket extension" \
1821 -C "parse new session ticket" \
1822 -c "a session has been resumed"
1823
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1824# Tests for Max Fragment Length extension
1825
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1826if [ "$MAX_CONTENT_LEN" -lt "4096" ]; then
1827 printf "${CONFIG_H} defines MBEDTLS_SSL_MAX_CONTENT_LEN to be less than 4096. Fragment length tests will fail.\n"
Hanno Becker6428f8d2017-09-22 16:58:50 +0100[diff] [blame]1828 exit 1
1829fi
1830
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1831if [ $MAX_CONTENT_LEN -ne 16384 ]; then
1832 printf "Using non-default maximum content length $MAX_CONTENT_LEN\n"
1833fi
1834
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]1835requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1836run_test "Max fragment length: enabled, default" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1837 "$P_SRV debug_level=3" \
1838 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]1839 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1840 -c "Maximum fragment length is $MAX_CONTENT_LEN" \
1841 -s "Maximum fragment length is $MAX_CONTENT_LEN" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]1842 -C "client hello, adding max_fragment_length extension" \
1843 -S "found max fragment length extension" \
1844 -S "server hello, max_fragment_length extension" \
1845 -C "found max_fragment_length extension"
1846
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]1847requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1848run_test "Max fragment length: enabled, default, larger message" \
1849 "$P_SRV debug_level=3" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1850 "$P_CLI debug_level=3 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1851 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1852 -c "Maximum fragment length is $MAX_CONTENT_LEN" \
1853 -s "Maximum fragment length is $MAX_CONTENT_LEN" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1854 -C "client hello, adding max_fragment_length extension" \
1855 -S "found max fragment length extension" \
1856 -S "server hello, max_fragment_length extension" \
1857 -C "found max_fragment_length extension" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1858 -c "$(( $MAX_CONTENT_LEN + 1)) bytes written in 2 fragments" \
1859 -s "$MAX_CONTENT_LEN bytes read" \
Hanno Becker9cfabe32017-10-18 14:42:01 +0100[diff] [blame]1860 -s "1 bytes read"
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1861
1862requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1863run_test "Max fragment length, DTLS: enabled, default, larger message" \
1864 "$P_SRV debug_level=3 dtls=1" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1865 "$P_CLI debug_level=3 dtls=1 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1866 1 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1867 -c "Maximum fragment length is $MAX_CONTENT_LEN" \
1868 -s "Maximum fragment length is $MAX_CONTENT_LEN" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1869 -C "client hello, adding max_fragment_length extension" \
1870 -S "found max fragment length extension" \
1871 -S "server hello, max_fragment_length extension" \
1872 -C "found max_fragment_length extension" \
1873 -c "fragment larger than.*maximum "
1874
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1875# Run some tests with MBEDTLS_SSL_MAX_FRAGMENT_LENGTH disabled
1876# (session fragment length will be 16384 regardless of mbedtls
1877# content length configuration.)
1878
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1879requires_config_disabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1880run_test "Max fragment length: disabled, larger message" \
1881 "$P_SRV debug_level=3" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1882 "$P_CLI debug_level=3 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1883 0 \
1884 -C "Maximum fragment length is 16384" \
1885 -S "Maximum fragment length is 16384" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1886 -c "$(( $MAX_CONTENT_LEN + 1)) bytes written in 2 fragments" \
1887 -s "$MAX_CONTENT_LEN bytes read" \
Hanno Becker9cfabe32017-10-18 14:42:01 +0100[diff] [blame]1888 -s "1 bytes read"
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1889
1890requires_config_disabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1891run_test "Max fragment length DTLS: disabled, larger message" \
1892 "$P_SRV debug_level=3 dtls=1" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1893 "$P_CLI debug_level=3 dtls=1 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]1894 1 \
1895 -C "Maximum fragment length is 16384" \
1896 -S "Maximum fragment length is 16384" \
1897 -c "fragment larger than.*maximum "
1898
1899requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1900run_test "Max fragment length: used by client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1901 "$P_SRV debug_level=3" \
1902 "$P_CLI debug_level=3 max_frag_len=4096" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]1903 0 \
Manuel Pégourié-Gonnarda2cda6b2015-08-31 18:30:52 +0200[diff] [blame]1904 -c "Maximum fragment length is 4096" \
1905 -s "Maximum fragment length is 4096" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]1906 -c "client hello, adding max_fragment_length extension" \
1907 -s "found max fragment length extension" \
1908 -s "server hello, max_fragment_length extension" \
1909 -c "found max_fragment_length extension"
1910
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]1911requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1912run_test "Max fragment length: used by server" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1913 "$P_SRV debug_level=3 max_frag_len=4096" \
1914 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]1915 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]1916 -c "Maximum fragment length is $MAX_CONTENT_LEN" \
Manuel Pégourié-Gonnarda2cda6b2015-08-31 18:30:52 +0200[diff] [blame]1917 -s "Maximum fragment length is 4096" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]1918 -C "client hello, adding max_fragment_length extension" \
1919 -S "found max fragment length extension" \
1920 -S "server hello, max_fragment_length extension" \
1921 -C "found max_fragment_length extension"
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1922
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]1923requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1924requires_gnutls
1925run_test "Max fragment length: gnutls server" \
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]1926 "$G_SRV" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1927 "$P_CLI debug_level=3 max_frag_len=4096" \
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]1928 0 \
Manuel Pégourié-Gonnarda2cda6b2015-08-31 18:30:52 +0200[diff] [blame]1929 -c "Maximum fragment length is 4096" \
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]1930 -c "client hello, adding max_fragment_length extension" \
1931 -c "found max_fragment_length extension"
1932
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]1933requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]1934run_test "Max fragment length: client, message just fits" \
1935 "$P_SRV debug_level=3" \
1936 "$P_CLI debug_level=3 max_frag_len=2048 request_size=2048" \
1937 0 \
Manuel Pégourié-Gonnarda2cda6b2015-08-31 18:30:52 +0200[diff] [blame]1938 -c "Maximum fragment length is 2048" \
1939 -s "Maximum fragment length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]1940 -c "client hello, adding max_fragment_length extension" \
1941 -s "found max fragment length extension" \
1942 -s "server hello, max_fragment_length extension" \
1943 -c "found max_fragment_length extension" \
1944 -c "2048 bytes written in 1 fragments" \
1945 -s "2048 bytes read"
1946
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]1947requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]1948run_test "Max fragment length: client, larger message" \
1949 "$P_SRV debug_level=3" \
1950 "$P_CLI debug_level=3 max_frag_len=2048 request_size=2345" \
1951 0 \
Manuel Pégourié-Gonnarda2cda6b2015-08-31 18:30:52 +0200[diff] [blame]1952 -c "Maximum fragment length is 2048" \
1953 -s "Maximum fragment length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]1954 -c "client hello, adding max_fragment_length extension" \
1955 -s "found max fragment length extension" \
1956 -s "server hello, max_fragment_length extension" \
1957 -c "found max_fragment_length extension" \
1958 -c "2345 bytes written in 2 fragments" \
1959 -s "2048 bytes read" \
1960 -s "297 bytes read"
1961
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]1962requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard23eb74d2015-01-21 14:37:13 +0000[diff] [blame]1963run_test "Max fragment length: DTLS client, larger message" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]1964 "$P_SRV debug_level=3 dtls=1" \
1965 "$P_CLI debug_level=3 dtls=1 max_frag_len=2048 request_size=2345" \
1966 1 \
Manuel Pégourié-Gonnarda2cda6b2015-08-31 18:30:52 +0200[diff] [blame]1967 -c "Maximum fragment length is 2048" \
1968 -s "Maximum fragment length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]1969 -c "client hello, adding max_fragment_length extension" \
1970 -s "found max fragment length extension" \
1971 -s "server hello, max_fragment_length extension" \
1972 -c "found max_fragment_length extension" \
1973 -c "fragment larger than.*maximum"
1974
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1975# Tests for renegotiation
1976
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]1977# Renegotiation SCSV always added, regardless of SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1978run_test "Renegotiation: none, for reference" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]1979 "$P_SRV debug_level=3 exchanges=2 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1980 "$P_CLI debug_level=3 exchanges=2" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1981 0 \
1982 -C "client hello, adding renegotiation extension" \
1983 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
1984 -S "found renegotiation extension" \
1985 -s "server hello, secure renegotiation extension" \
1986 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1987 -C "=> renegotiate" \
1988 -S "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1989 -S "write hello request"
1990
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]1991requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]1992run_test "Renegotiation: client-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]1993 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]1994 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1995 0 \
1996 -c "client hello, adding renegotiation extension" \
1997 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
1998 -s "found renegotiation extension" \
1999 -s "server hello, secure renegotiation extension" \
2000 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]2001 -c "=> renegotiate" \
2002 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2003 -S "write hello request"
2004
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2005requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2006run_test "Renegotiation: server-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2007 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2008 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2009 0 \
2010 -c "client hello, adding renegotiation extension" \
2011 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2012 -s "found renegotiation extension" \
2013 -s "server hello, secure renegotiation extension" \
2014 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]2015 -c "=> renegotiate" \
2016 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2017 -s "write hello request"
2018
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]2019# Checks that no Signature Algorithm with SHA-1 gets negotiated. Negotiating SHA-1 would mean that
2020# the server did not parse the Signature Algorithm extension. This test is valid only if an MD
2021# algorithm stronger than SHA-1 is enabled in config.h
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2022requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]2023run_test "Renegotiation: Signature Algorithms parsing, client-initiated" \
2024 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional" \
2025 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
2026 0 \
2027 -c "client hello, adding renegotiation extension" \
2028 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2029 -s "found renegotiation extension" \
2030 -s "server hello, secure renegotiation extension" \
2031 -c "found renegotiation extension" \
2032 -c "=> renegotiate" \
2033 -s "=> renegotiate" \
2034 -S "write hello request" \
2035 -S "client hello v3, signature_algorithm ext: 2" # Is SHA-1 negotiated?
2036
2037# Checks that no Signature Algorithm with SHA-1 gets negotiated. Negotiating SHA-1 would mean that
2038# the server did not parse the Signature Algorithm extension. This test is valid only if an MD
2039# algorithm stronger than SHA-1 is enabled in config.h
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2040requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]2041run_test "Renegotiation: Signature Algorithms parsing, server-initiated" \
2042 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
2043 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
2044 0 \
2045 -c "client hello, adding renegotiation extension" \
2046 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2047 -s "found renegotiation extension" \
2048 -s "server hello, secure renegotiation extension" \
2049 -c "found renegotiation extension" \
2050 -c "=> renegotiate" \
2051 -s "=> renegotiate" \
2052 -s "write hello request" \
2053 -S "client hello v3, signature_algorithm ext: 2" # Is SHA-1 negotiated?
2054
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2055requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2056run_test "Renegotiation: double" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2057 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2058 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2059 0 \
2060 -c "client hello, adding renegotiation extension" \
2061 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2062 -s "found renegotiation extension" \
2063 -s "server hello, secure renegotiation extension" \
2064 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]2065 -c "=> renegotiate" \
2066 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2067 -s "write hello request"
2068
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2069requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2070run_test "Renegotiation: client-initiated, server-rejected" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2071 "$P_SRV debug_level=3 exchanges=2 renegotiation=0 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2072 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2073 1 \
2074 -c "client hello, adding renegotiation extension" \
2075 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2076 -S "found renegotiation extension" \
2077 -s "server hello, secure renegotiation extension" \
2078 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]2079 -c "=> renegotiate" \
2080 -S "=> renegotiate" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]2081 -S "write hello request" \
Manuel Pégourié-Gonnard65919622014-08-19 12:50:30 +0200[diff] [blame]2082 -c "SSL - Unexpected message at ServerHello in renegotiation" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]2083 -c "failed"
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2084
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2085requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2086run_test "Renegotiation: server-initiated, client-rejected, default" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2087 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2088 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2089 0 \
2090 -C "client hello, adding renegotiation extension" \
2091 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2092 -S "found renegotiation extension" \
2093 -s "server hello, secure renegotiation extension" \
2094 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]2095 -C "=> renegotiate" \
2096 -S "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2097 -s "write hello request" \
Manuel Pégourié-Gonnarda9964db2014-07-03 19:29:16 +0200[diff] [blame]2098 -S "SSL - An unexpected message was received from our peer" \
2099 -S "failed"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]2100
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2101requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2102run_test "Renegotiation: server-initiated, client-rejected, not enforced" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2103 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2104 renego_delay=-1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2105 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]2106 0 \
2107 -C "client hello, adding renegotiation extension" \
2108 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2109 -S "found renegotiation extension" \
2110 -s "server hello, secure renegotiation extension" \
2111 -c "found renegotiation extension" \
2112 -C "=> renegotiate" \
2113 -S "=> renegotiate" \
2114 -s "write hello request" \
2115 -S "SSL - An unexpected message was received from our peer" \
2116 -S "failed"
2117
Manuel Pégourié-Gonnarda8c0a0d2014-08-15 12:07:38 +0200[diff] [blame]2118# delay 2 for 1 alert record + 1 application data record
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2119requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2120run_test "Renegotiation: server-initiated, client-rejected, delay 2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2121 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2122 renego_delay=2 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2123 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]2124 0 \
2125 -C "client hello, adding renegotiation extension" \
2126 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2127 -S "found renegotiation extension" \
2128 -s "server hello, secure renegotiation extension" \
2129 -c "found renegotiation extension" \
2130 -C "=> renegotiate" \
2131 -S "=> renegotiate" \
2132 -s "write hello request" \
2133 -S "SSL - An unexpected message was received from our peer" \
2134 -S "failed"
2135
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2136requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2137run_test "Renegotiation: server-initiated, client-rejected, delay 0" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2138 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2139 renego_delay=0 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2140 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]2141 0 \
2142 -C "client hello, adding renegotiation extension" \
2143 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2144 -S "found renegotiation extension" \
2145 -s "server hello, secure renegotiation extension" \
2146 -c "found renegotiation extension" \
2147 -C "=> renegotiate" \
2148 -S "=> renegotiate" \
2149 -s "write hello request" \
Manuel Pégourié-Gonnarda8c0a0d2014-08-15 12:07:38 +0200[diff] [blame]2150 -s "SSL - An unexpected message was received from our peer"
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]2151
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2152requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2153run_test "Renegotiation: server-initiated, client-accepted, delay 0" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2154 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2155 renego_delay=0 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2156 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]2157 0 \
2158 -c "client hello, adding renegotiation extension" \
2159 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2160 -s "found renegotiation extension" \
2161 -s "server hello, secure renegotiation extension" \
2162 -c "found renegotiation extension" \
2163 -c "=> renegotiate" \
2164 -s "=> renegotiate" \
2165 -s "write hello request" \
2166 -S "SSL - An unexpected message was received from our peer" \
2167 -S "failed"
2168
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2169requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]2170run_test "Renegotiation: periodic, just below period" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2171 "$P_SRV debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]2172 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
2173 0 \
2174 -C "client hello, adding renegotiation extension" \
2175 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2176 -S "found renegotiation extension" \
2177 -s "server hello, secure renegotiation extension" \
2178 -c "found renegotiation extension" \
2179 -S "record counter limit reached: renegotiate" \
2180 -C "=> renegotiate" \
2181 -S "=> renegotiate" \
2182 -S "write hello request" \
2183 -S "SSL - An unexpected message was received from our peer" \
2184 -S "failed"
2185
Manuel Pégourié-Gonnard9835bc02015-01-14 14:41:58 +0100[diff] [blame]2186# one extra exchange to be able to complete renego
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2187requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]2188run_test "Renegotiation: periodic, just above period" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2189 "$P_SRV debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard9835bc02015-01-14 14:41:58 +0100[diff] [blame]2190 "$P_CLI debug_level=3 exchanges=4 renegotiation=1" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]2191 0 \
2192 -c "client hello, adding renegotiation extension" \
2193 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2194 -s "found renegotiation extension" \
2195 -s "server hello, secure renegotiation extension" \
2196 -c "found renegotiation extension" \
2197 -s "record counter limit reached: renegotiate" \
2198 -c "=> renegotiate" \
2199 -s "=> renegotiate" \
2200 -s "write hello request" \
2201 -S "SSL - An unexpected message was received from our peer" \
2202 -S "failed"
2203
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2204requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]2205run_test "Renegotiation: periodic, two times period" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2206 "$P_SRV debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard9835bc02015-01-14 14:41:58 +0100[diff] [blame]2207 "$P_CLI debug_level=3 exchanges=7 renegotiation=1" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]2208 0 \
2209 -c "client hello, adding renegotiation extension" \
2210 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2211 -s "found renegotiation extension" \
2212 -s "server hello, secure renegotiation extension" \
2213 -c "found renegotiation extension" \
2214 -s "record counter limit reached: renegotiate" \
2215 -c "=> renegotiate" \
2216 -s "=> renegotiate" \
2217 -s "write hello request" \
2218 -S "SSL - An unexpected message was received from our peer" \
2219 -S "failed"
2220
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2221requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]2222run_test "Renegotiation: periodic, above period, disabled" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2223 "$P_SRV debug_level=3 exchanges=9 renegotiation=0 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]2224 "$P_CLI debug_level=3 exchanges=4 renegotiation=1" \
2225 0 \
2226 -C "client hello, adding renegotiation extension" \
2227 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2228 -S "found renegotiation extension" \
2229 -s "server hello, secure renegotiation extension" \
2230 -c "found renegotiation extension" \
2231 -S "record counter limit reached: renegotiate" \
2232 -C "=> renegotiate" \
2233 -S "=> renegotiate" \
2234 -S "write hello request" \
2235 -S "SSL - An unexpected message was received from our peer" \
2236 -S "failed"
2237
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2238requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2239run_test "Renegotiation: nbio, client-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2240 "$P_SRV debug_level=3 nbio=2 exchanges=2 renegotiation=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2241 "$P_CLI debug_level=3 nbio=2 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnardf07f4212014-08-15 19:04:47 +0200[diff] [blame]2242 0 \
2243 -c "client hello, adding renegotiation extension" \
2244 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2245 -s "found renegotiation extension" \
2246 -s "server hello, secure renegotiation extension" \
2247 -c "found renegotiation extension" \
2248 -c "=> renegotiate" \
2249 -s "=> renegotiate" \
2250 -S "write hello request"
2251
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2252requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2253run_test "Renegotiation: nbio, server-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]2254 "$P_SRV debug_level=3 nbio=2 exchanges=2 renegotiation=1 renegotiate=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2255 "$P_CLI debug_level=3 nbio=2 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnardf07f4212014-08-15 19:04:47 +0200[diff] [blame]2256 0 \
2257 -c "client hello, adding renegotiation extension" \
2258 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2259 -s "found renegotiation extension" \
2260 -s "server hello, secure renegotiation extension" \
2261 -c "found renegotiation extension" \
2262 -c "=> renegotiate" \
2263 -s "=> renegotiate" \
2264 -s "write hello request"
2265
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2266requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2267run_test "Renegotiation: openssl server, client-initiated" \
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]2268 "$O_SRV -www" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2269 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]2270 0 \
2271 -c "client hello, adding renegotiation extension" \
2272 -c "found renegotiation extension" \
2273 -c "=> renegotiate" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2274 -C "ssl_hanshake() returned" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]2275 -C "error" \
2276 -c "HTTP/1.0 200 [Oo][Kk]"
2277
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]2278requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2279requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2280run_test "Renegotiation: gnutls server strict, client-initiated" \
2281 "$G_SRV --priority=NORMAL:%SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2282 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]2283 0 \
2284 -c "client hello, adding renegotiation extension" \
2285 -c "found renegotiation extension" \
2286 -c "=> renegotiate" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2287 -C "ssl_hanshake() returned" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]2288 -C "error" \
2289 -c "HTTP/1.0 200 [Oo][Kk]"
2290
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]2291requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2292requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2293run_test "Renegotiation: gnutls server unsafe, client-initiated default" \
2294 "$G_SRV --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION" \
2295 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
2296 1 \
2297 -c "client hello, adding renegotiation extension" \
2298 -C "found renegotiation extension" \
2299 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2300 -c "mbedtls_ssl_handshake() returned" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2301 -c "error" \
2302 -C "HTTP/1.0 200 [Oo][Kk]"
2303
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]2304requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2305requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2306run_test "Renegotiation: gnutls server unsafe, client-inititated no legacy" \
2307 "$G_SRV --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION" \
2308 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1 \
2309 allow_legacy=0" \
2310 1 \
2311 -c "client hello, adding renegotiation extension" \
2312 -C "found renegotiation extension" \
2313 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2314 -c "mbedtls_ssl_handshake() returned" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2315 -c "error" \
2316 -C "HTTP/1.0 200 [Oo][Kk]"
2317
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]2318requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2319requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2320run_test "Renegotiation: gnutls server unsafe, client-inititated legacy" \
2321 "$G_SRV --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION" \
2322 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1 \
2323 allow_legacy=1" \
2324 0 \
2325 -c "client hello, adding renegotiation extension" \
2326 -C "found renegotiation extension" \
2327 -c "=> renegotiate" \
2328 -C "ssl_hanshake() returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2329 -C "error" \
2330 -c "HTTP/1.0 200 [Oo][Kk]"
2331
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2332requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard30d16eb2014-08-19 17:43:50 +0200[diff] [blame]2333run_test "Renegotiation: DTLS, client-initiated" \
2334 "$P_SRV debug_level=3 dtls=1 exchanges=2 renegotiation=1" \
2335 "$P_CLI debug_level=3 dtls=1 exchanges=2 renegotiation=1 renegotiate=1" \
2336 0 \
2337 -c "client hello, adding renegotiation extension" \
2338 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2339 -s "found renegotiation extension" \
2340 -s "server hello, secure renegotiation extension" \
2341 -c "found renegotiation extension" \
2342 -c "=> renegotiate" \
2343 -s "=> renegotiate" \
2344 -S "write hello request"
2345
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2346requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardc392b242014-08-19 17:53:11 +0200[diff] [blame]2347run_test "Renegotiation: DTLS, server-initiated" \
2348 "$P_SRV debug_level=3 dtls=1 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnarddf9a0a82014-10-02 14:17:18 +0200[diff] [blame]2349 "$P_CLI debug_level=3 dtls=1 exchanges=2 renegotiation=1 \
2350 read_timeout=1000 max_resend=2" \
Manuel Pégourié-Gonnardc392b242014-08-19 17:53:11 +0200[diff] [blame]2351 0 \
2352 -c "client hello, adding renegotiation extension" \
2353 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2354 -s "found renegotiation extension" \
2355 -s "server hello, secure renegotiation extension" \
2356 -c "found renegotiation extension" \
2357 -c "=> renegotiate" \
2358 -s "=> renegotiate" \
2359 -s "write hello request"
2360
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2361requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Andres AG692ad842017-01-19 16:30:57 +0000[diff] [blame]2362run_test "Renegotiation: DTLS, renego_period overflow" \
2363 "$P_SRV debug_level=3 dtls=1 exchanges=4 renegotiation=1 renego_period=18446462598732840962 auth_mode=optional" \
2364 "$P_CLI debug_level=3 dtls=1 exchanges=4 renegotiation=1" \
2365 0 \
2366 -c "client hello, adding renegotiation extension" \
2367 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
2368 -s "found renegotiation extension" \
2369 -s "server hello, secure renegotiation extension" \
2370 -s "record counter limit reached: renegotiate" \
2371 -c "=> renegotiate" \
2372 -s "=> renegotiate" \
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2373 -s "write hello request"
Andres AG692ad842017-01-19 16:30:57 +0000[diff] [blame]2374
Manuel Pégourié-Gonnard96999962015-02-17 16:02:37 +0000[diff] [blame]2375requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]2376requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardf1499f62014-08-31 17:13:13 +0200[diff] [blame]2377run_test "Renegotiation: DTLS, gnutls server, client-initiated" \
2378 "$G_SRV -u --mtu 4096" \
2379 "$P_CLI debug_level=3 dtls=1 exchanges=1 renegotiation=1 renegotiate=1" \
2380 0 \
2381 -c "client hello, adding renegotiation extension" \
2382 -c "found renegotiation extension" \
2383 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2384 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardf1499f62014-08-31 17:13:13 +0200[diff] [blame]2385 -C "error" \
2386 -s "Extra-header:"
2387
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2388# Test for the "secure renegotation" extension only (no actual renegotiation)
2389
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]2390requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2391run_test "Renego ext: gnutls server strict, client default" \
2392 "$G_SRV --priority=NORMAL:%SAFE_RENEGOTIATION" \
2393 "$P_CLI debug_level=3" \
2394 0 \
2395 -c "found renegotiation extension" \
2396 -C "error" \
2397 -c "HTTP/1.0 200 [Oo][Kk]"
2398
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]2399requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2400run_test "Renego ext: gnutls server unsafe, client default" \
2401 "$G_SRV --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION" \
2402 "$P_CLI debug_level=3" \
2403 0 \
2404 -C "found renegotiation extension" \
2405 -C "error" \
2406 -c "HTTP/1.0 200 [Oo][Kk]"
2407
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]2408requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2409run_test "Renego ext: gnutls server unsafe, client break legacy" \
2410 "$G_SRV --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION" \
2411 "$P_CLI debug_level=3 allow_legacy=-1" \
2412 1 \
2413 -C "found renegotiation extension" \
2414 -c "error" \
2415 -C "HTTP/1.0 200 [Oo][Kk]"
2416
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]2417requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2418run_test "Renego ext: gnutls client strict, server default" \
2419 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]2420 "$G_CLI --priority=NORMAL:%SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2421 0 \
2422 -s "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
2423 -s "server hello, secure renegotiation extension"
2424
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]2425requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2426run_test "Renego ext: gnutls client unsafe, server default" \
2427 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]2428 "$G_CLI --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2429 0 \
2430 -S "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
2431 -S "server hello, secure renegotiation extension"
2432
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]2433requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2434run_test "Renego ext: gnutls client unsafe, server break legacy" \
2435 "$P_SRV debug_level=3 allow_legacy=-1" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]2436 "$G_CLI --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]2437 1 \
2438 -S "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
2439 -S "server hello, secure renegotiation extension"
2440
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]2441# Tests for silently dropping trailing extra bytes in .der certificates
2442
2443requires_gnutls
2444run_test "DER format: no trailing bytes" \
2445 "$P_SRV crt_file=data_files/server5-der0.crt \
2446 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]2447 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]2448 0 \
2449 -c "Handshake was completed" \
2450
2451requires_gnutls
2452run_test "DER format: with a trailing zero byte" \
2453 "$P_SRV crt_file=data_files/server5-der1a.crt \
2454 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]2455 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]2456 0 \
2457 -c "Handshake was completed" \
2458
2459requires_gnutls
2460run_test "DER format: with a trailing random byte" \
2461 "$P_SRV crt_file=data_files/server5-der1b.crt \
2462 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]2463 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]2464 0 \
2465 -c "Handshake was completed" \
2466
2467requires_gnutls
2468run_test "DER format: with 2 trailing random bytes" \
2469 "$P_SRV crt_file=data_files/server5-der2.crt \
2470 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]2471 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]2472 0 \
2473 -c "Handshake was completed" \
2474
2475requires_gnutls
2476run_test "DER format: with 4 trailing random bytes" \
2477 "$P_SRV crt_file=data_files/server5-der4.crt \
2478 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]2479 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]2480 0 \
2481 -c "Handshake was completed" \
2482
2483requires_gnutls
2484run_test "DER format: with 8 trailing random bytes" \
2485 "$P_SRV crt_file=data_files/server5-der8.crt \
2486 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]2487 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]2488 0 \
2489 -c "Handshake was completed" \
2490
2491requires_gnutls
2492run_test "DER format: with 9 trailing random bytes" \
2493 "$P_SRV crt_file=data_files/server5-der9.crt \
2494 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]2495 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]2496 0 \
2497 -c "Handshake was completed" \
2498
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2499# Tests for auth_mode
2500
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2501run_test "Authentication: server badcert, client required" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2502 "$P_SRV crt_file=data_files/server5-badsign.crt \
2503 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2504 "$P_CLI debug_level=1 auth_mode=required" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2505 1 \
2506 -c "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]2507 -c "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2508 -c "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2509 -c "X509 - Certificate verification failed"
2510
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2511run_test "Authentication: server badcert, client optional" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2512 "$P_SRV crt_file=data_files/server5-badsign.crt \
2513 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2514 "$P_CLI debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2515 0 \
2516 -c "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]2517 -c "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2518 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2519 -C "X509 - Certificate verification failed"
2520
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]2521run_test "Authentication: server goodcert, client optional, no trusted CA" \
2522 "$P_SRV" \
2523 "$P_CLI debug_level=3 auth_mode=optional ca_file=none ca_path=none" \
2524 0 \
2525 -c "x509_verify_cert() returned" \
2526 -c "! The certificate is not correctly signed by the trusted CA" \
2527 -c "! Certificate verification flags"\
2528 -C "! mbedtls_ssl_handshake returned" \
2529 -C "X509 - Certificate verification failed" \
2530 -C "SSL - No CA Chain is set, but required to operate"
2531
2532run_test "Authentication: server goodcert, client required, no trusted CA" \
2533 "$P_SRV" \
2534 "$P_CLI debug_level=3 auth_mode=required ca_file=none ca_path=none" \
2535 1 \
2536 -c "x509_verify_cert() returned" \
2537 -c "! The certificate is not correctly signed by the trusted CA" \
2538 -c "! Certificate verification flags"\
2539 -c "! mbedtls_ssl_handshake returned" \
2540 -c "SSL - No CA Chain is set, but required to operate"
2541
2542# The purpose of the next two tests is to test the client's behaviour when receiving a server
2543# certificate with an unsupported elliptic curve. This should usually not happen because
2544# the client informs the server about the supported curves - it does, though, in the
2545# corner case of a static ECDH suite, because the server doesn't check the curve on that
2546# occasion (to be fixed). If that bug's fixed, the test needs to be altered to use a
2547# different means to have the server ignoring the client's supported curve list.
2548
2549requires_config_enabled MBEDTLS_ECP_C
2550run_test "Authentication: server ECDH p256v1, client required, p256v1 unsupported" \
2551 "$P_SRV debug_level=1 key_file=data_files/server5.key \
2552 crt_file=data_files/server5.ku-ka.crt" \
2553 "$P_CLI debug_level=3 auth_mode=required curves=secp521r1" \
2554 1 \
2555 -c "bad certificate (EC key curve)"\
2556 -c "! Certificate verification flags"\
2557 -C "bad server certificate (ECDH curve)" # Expect failure at earlier verification stage
2558
2559requires_config_enabled MBEDTLS_ECP_C
2560run_test "Authentication: server ECDH p256v1, client optional, p256v1 unsupported" \
2561 "$P_SRV debug_level=1 key_file=data_files/server5.key \
2562 crt_file=data_files/server5.ku-ka.crt" \
2563 "$P_CLI debug_level=3 auth_mode=optional curves=secp521r1" \
2564 1 \
2565 -c "bad certificate (EC key curve)"\
2566 -c "! Certificate verification flags"\
2567 -c "bad server certificate (ECDH curve)" # Expect failure only at ECDH params check
2568
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2569run_test "Authentication: server badcert, client none" \
Manuel Pégourié-Gonnardc1da6642014-02-25 14:18:30 +0100[diff] [blame]2570 "$P_SRV crt_file=data_files/server5-badsign.crt \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2571 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2572 "$P_CLI debug_level=1 auth_mode=none" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2573 0 \
2574 -C "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]2575 -C "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2576 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2577 -C "X509 - Certificate verification failed"
2578
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]2579run_test "Authentication: client SHA256, server required" \
2580 "$P_SRV auth_mode=required" \
2581 "$P_CLI debug_level=3 crt_file=data_files/server6.crt \
2582 key_file=data_files/server6.key \
2583 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
2584 0 \
2585 -c "Supported Signature Algorithm found: 4," \
2586 -c "Supported Signature Algorithm found: 5,"
2587
2588run_test "Authentication: client SHA384, server required" \
2589 "$P_SRV auth_mode=required" \
2590 "$P_CLI debug_level=3 crt_file=data_files/server6.crt \
2591 key_file=data_files/server6.key \
2592 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
2593 0 \
2594 -c "Supported Signature Algorithm found: 4," \
2595 -c "Supported Signature Algorithm found: 5,"
2596
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]2597requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
2598run_test "Authentication: client has no cert, server required (SSLv3)" \
2599 "$P_SRV debug_level=3 min_version=ssl3 auth_mode=required" \
2600 "$P_CLI debug_level=3 force_version=ssl3 crt_file=none \
2601 key_file=data_files/server5.key" \
2602 1 \
2603 -S "skip write certificate request" \
2604 -C "skip parse certificate request" \
2605 -c "got a certificate request" \
2606 -c "got no certificate to send" \
2607 -S "x509_verify_cert() returned" \
2608 -s "client has no certificate" \
2609 -s "! mbedtls_ssl_handshake returned" \
2610 -c "! mbedtls_ssl_handshake returned" \
2611 -s "No client certification received from the client, but required by the authentication mode"
2612
2613run_test "Authentication: client has no cert, server required (TLS)" \
2614 "$P_SRV debug_level=3 auth_mode=required" \
2615 "$P_CLI debug_level=3 crt_file=none \
2616 key_file=data_files/server5.key" \
2617 1 \
2618 -S "skip write certificate request" \
2619 -C "skip parse certificate request" \
2620 -c "got a certificate request" \
2621 -c "= write certificate$" \
2622 -C "skip write certificate$" \
2623 -S "x509_verify_cert() returned" \
2624 -s "client has no certificate" \
2625 -s "! mbedtls_ssl_handshake returned" \
2626 -c "! mbedtls_ssl_handshake returned" \
2627 -s "No client certification received from the client, but required by the authentication mode"
2628
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2629run_test "Authentication: client badcert, server required" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2630 "$P_SRV debug_level=3 auth_mode=required" \
2631 "$P_CLI debug_level=3 crt_file=data_files/server5-badsign.crt \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2632 key_file=data_files/server5.key" \
2633 1 \
2634 -S "skip write certificate request" \
2635 -C "skip parse certificate request" \
2636 -c "got a certificate request" \
2637 -C "skip write certificate" \
2638 -C "skip write certificate verify" \
2639 -S "skip parse certificate verify" \
2640 -s "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]2641 -s "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2642 -s "! mbedtls_ssl_handshake returned" \
Gilles Peskine1cc8e342017-05-03 16:28:34 +0200[diff] [blame]2643 -s "send alert level=2 message=48" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2644 -c "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2645 -s "X509 - Certificate verification failed"
Gilles Peskine1cc8e342017-05-03 16:28:34 +0200[diff] [blame]2646# We don't check that the client receives the alert because it might
2647# detect that its write end of the connection is closed and abort
2648# before reading the alert message.
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2649
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]2650run_test "Authentication: client cert not trusted, server required" \
2651 "$P_SRV debug_level=3 auth_mode=required" \
2652 "$P_CLI debug_level=3 crt_file=data_files/server5-selfsigned.crt \
2653 key_file=data_files/server5.key" \
2654 1 \
2655 -S "skip write certificate request" \
2656 -C "skip parse certificate request" \
2657 -c "got a certificate request" \
2658 -C "skip write certificate" \
2659 -C "skip write certificate verify" \
2660 -S "skip parse certificate verify" \
2661 -s "x509_verify_cert() returned" \
2662 -s "! The certificate is not correctly signed by the trusted CA" \
2663 -s "! mbedtls_ssl_handshake returned" \
2664 -c "! mbedtls_ssl_handshake returned" \
2665 -s "X509 - Certificate verification failed"
2666
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2667run_test "Authentication: client badcert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2668 "$P_SRV debug_level=3 auth_mode=optional" \
2669 "$P_CLI debug_level=3 crt_file=data_files/server5-badsign.crt \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2670 key_file=data_files/server5.key" \
2671 0 \
2672 -S "skip write certificate request" \
2673 -C "skip parse certificate request" \
2674 -c "got a certificate request" \
2675 -C "skip write certificate" \
2676 -C "skip write certificate verify" \
2677 -S "skip parse certificate verify" \
2678 -s "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]2679 -s "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2680 -S "! mbedtls_ssl_handshake returned" \
2681 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2682 -S "X509 - Certificate verification failed"
2683
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2684run_test "Authentication: client badcert, server none" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2685 "$P_SRV debug_level=3 auth_mode=none" \
2686 "$P_CLI debug_level=3 crt_file=data_files/server5-badsign.crt \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2687 key_file=data_files/server5.key" \
2688 0 \
2689 -s "skip write certificate request" \
2690 -C "skip parse certificate request" \
2691 -c "got no certificate request" \
2692 -c "skip write certificate" \
2693 -c "skip write certificate verify" \
2694 -s "skip parse certificate verify" \
2695 -S "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]2696 -S "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2697 -S "! mbedtls_ssl_handshake returned" \
2698 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]2699 -S "X509 - Certificate verification failed"
2700
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2701run_test "Authentication: client no cert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2702 "$P_SRV debug_level=3 auth_mode=optional" \
2703 "$P_CLI debug_level=3 crt_file=none key_file=none" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]2704 0 \
2705 -S "skip write certificate request" \
2706 -C "skip parse certificate request" \
2707 -c "got a certificate request" \
2708 -C "skip write certificate$" \
2709 -C "got no certificate to send" \
2710 -S "SSLv3 client has no certificate" \
2711 -c "skip write certificate verify" \
2712 -s "skip parse certificate verify" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]2713 -s "! Certificate was missing" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2714 -S "! mbedtls_ssl_handshake returned" \
2715 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]2716 -S "X509 - Certificate verification failed"
2717
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2718run_test "Authentication: openssl client no cert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2719 "$P_SRV debug_level=3 auth_mode=optional" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]2720 "$O_CLI" \
2721 0 \
2722 -S "skip write certificate request" \
2723 -s "skip parse certificate verify" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]2724 -s "! Certificate was missing" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2725 -S "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]2726 -S "X509 - Certificate verification failed"
2727
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2728run_test "Authentication: client no cert, openssl server optional" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]2729 "$O_SRV -verify 10" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2730 "$P_CLI debug_level=3 crt_file=none key_file=none" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]2731 0 \
2732 -C "skip parse certificate request" \
2733 -c "got a certificate request" \
2734 -C "skip write certificate$" \
2735 -c "skip write certificate verify" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2736 -C "! mbedtls_ssl_handshake returned"
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]2737
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]2738run_test "Authentication: client no cert, openssl server required" \
2739 "$O_SRV -Verify 10" \
2740 "$P_CLI debug_level=3 crt_file=none key_file=none" \
2741 1 \
2742 -C "skip parse certificate request" \
2743 -c "got a certificate request" \
2744 -C "skip write certificate$" \
2745 -c "skip write certificate verify" \
2746 -c "! mbedtls_ssl_handshake returned"
2747
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]2748requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2749run_test "Authentication: client no cert, ssl3" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2750 "$P_SRV debug_level=3 auth_mode=optional force_version=ssl3" \
Manuel Pégourié-Gonnard448ea502015-01-12 11:40:14 +0100[diff] [blame]2751 "$P_CLI debug_level=3 crt_file=none key_file=none min_version=ssl3" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]2752 0 \
2753 -S "skip write certificate request" \
2754 -C "skip parse certificate request" \
2755 -c "got a certificate request" \
2756 -C "skip write certificate$" \
2757 -c "skip write certificate verify" \
2758 -c "got no certificate to send" \
2759 -s "SSLv3 client has no certificate" \
2760 -s "skip parse certificate verify" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]2761 -s "! Certificate was missing" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2762 -S "! mbedtls_ssl_handshake returned" \
2763 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]2764 -S "X509 - Certificate verification failed"
2765
Manuel Pégourié-Gonnard9107b5f2017-07-06 12:16:25 +0200[diff] [blame]2766# The "max_int chain" tests assume that MAX_INTERMEDIATE_CA is set to its
2767# default value (8)
Hanno Beckera6bca9f2017-07-26 13:35:11 +0100[diff] [blame]2768
Simon Butcherbcfa6f42017-07-28 15:59:35 +0100[diff] [blame]2769MAX_IM_CA='8'
Simon Butcher06b78632017-07-28 01:00:17 +0100[diff] [blame]2770MAX_IM_CA_CONFIG=$( ../scripts/config.pl get MBEDTLS_X509_MAX_INTERMEDIATE_CA)
Hanno Beckera6bca9f2017-07-26 13:35:11 +0100[diff] [blame]2771
Simon Butcherbcfa6f42017-07-28 15:59:35 +0100[diff] [blame]2772if [ -n "$MAX_IM_CA_CONFIG" ] && [ "$MAX_IM_CA_CONFIG" -ne "$MAX_IM_CA" ]; then
Simon Butcher06b78632017-07-28 01:00:17 +0100[diff] [blame]2773 printf "The ${CONFIG_H} file contains a value for the configuration of\n"
Simon Butcherbcfa6f42017-07-28 15:59:35 +0100[diff] [blame]2774 printf "MBEDTLS_X509_MAX_INTERMEDIATE_CA that is different from the script’s\n"
Simon Butcher06b78632017-07-28 01:00:17 +0100[diff] [blame]2775 printf "test value of ${MAX_IM_CA}. \n"
2776 printf "\n"
Simon Butcherbcfa6f42017-07-28 15:59:35 +0100[diff] [blame]2777 printf "The tests assume this value and if it changes, the tests in this\n"
2778 printf "script should also be adjusted.\n"
Simon Butcher06b78632017-07-28 01:00:17 +0100[diff] [blame]2779 printf "\n"
Simon Butcher06b78632017-07-28 01:00:17 +0100[diff] [blame]2780
2781 exit 1
Hanno Beckera6bca9f2017-07-26 13:35:11 +0100[diff] [blame]2782fi
2783
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]2784requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]2785run_test "Authentication: server max_int chain, client default" \
2786 "$P_SRV crt_file=data_files/dir-maxpath/c09.pem \
2787 key_file=data_files/dir-maxpath/09.key" \
2788 "$P_CLI server_name=CA09 ca_file=data_files/dir-maxpath/00.crt" \
2789 0 \
2790 -C "X509 - A fatal error occured"
2791
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]2792requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]2793run_test "Authentication: server max_int+1 chain, client default" \
2794 "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
2795 key_file=data_files/dir-maxpath/10.key" \
2796 "$P_CLI server_name=CA10 ca_file=data_files/dir-maxpath/00.crt" \
2797 1 \
2798 -c "X509 - A fatal error occured"
2799
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]2800requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]2801run_test "Authentication: server max_int+1 chain, client optional" \
2802 "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
2803 key_file=data_files/dir-maxpath/10.key" \
2804 "$P_CLI server_name=CA10 ca_file=data_files/dir-maxpath/00.crt \
2805 auth_mode=optional" \
2806 1 \
2807 -c "X509 - A fatal error occured"
2808
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]2809requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]2810run_test "Authentication: server max_int+1 chain, client none" \
2811 "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
2812 key_file=data_files/dir-maxpath/10.key" \
2813 "$P_CLI server_name=CA10 ca_file=data_files/dir-maxpath/00.crt \
2814 auth_mode=none" \
2815 0 \
2816 -C "X509 - A fatal error occured"
2817
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]2818requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]2819run_test "Authentication: client max_int+1 chain, server default" \
2820 "$P_SRV ca_file=data_files/dir-maxpath/00.crt" \
2821 "$P_CLI crt_file=data_files/dir-maxpath/c10.pem \
2822 key_file=data_files/dir-maxpath/10.key" \
2823 0 \
2824 -S "X509 - A fatal error occured"
2825
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]2826requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]2827run_test "Authentication: client max_int+1 chain, server optional" \
2828 "$P_SRV ca_file=data_files/dir-maxpath/00.crt auth_mode=optional" \
2829 "$P_CLI crt_file=data_files/dir-maxpath/c10.pem \
2830 key_file=data_files/dir-maxpath/10.key" \
2831 1 \
2832 -s "X509 - A fatal error occured"
2833
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]2834requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]2835run_test "Authentication: client max_int+1 chain, server required" \
2836 "$P_SRV ca_file=data_files/dir-maxpath/00.crt auth_mode=required" \
2837 "$P_CLI crt_file=data_files/dir-maxpath/c10.pem \
2838 key_file=data_files/dir-maxpath/10.key" \
2839 1 \
2840 -s "X509 - A fatal error occured"
2841
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]2842requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]2843run_test "Authentication: client max_int chain, server required" \
2844 "$P_SRV ca_file=data_files/dir-maxpath/00.crt auth_mode=required" \
2845 "$P_CLI crt_file=data_files/dir-maxpath/c09.pem \
2846 key_file=data_files/dir-maxpath/09.key" \
2847 0 \
2848 -S "X509 - A fatal error occured"
2849
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]2850# Tests for CA list in CertificateRequest messages
2851
2852run_test "Authentication: send CA list in CertificateRequest (default)" \
2853 "$P_SRV debug_level=3 auth_mode=required" \
2854 "$P_CLI crt_file=data_files/server6.crt \
2855 key_file=data_files/server6.key" \
2856 0 \
2857 -s "requested DN"
2858
2859run_test "Authentication: do not send CA list in CertificateRequest" \
2860 "$P_SRV debug_level=3 auth_mode=required cert_req_ca_list=0" \
2861 "$P_CLI crt_file=data_files/server6.crt \
2862 key_file=data_files/server6.key" \
2863 0 \
2864 -S "requested DN"
2865
2866run_test "Authentication: send CA list in CertificateRequest, client self signed" \
2867 "$P_SRV debug_level=3 auth_mode=required cert_req_ca_list=0" \
2868 "$P_CLI debug_level=3 crt_file=data_files/server5-selfsigned.crt \
2869 key_file=data_files/server5.key" \
2870 1 \
2871 -S "requested DN" \
2872 -s "x509_verify_cert() returned" \
2873 -s "! The certificate is not correctly signed by the trusted CA" \
2874 -s "! mbedtls_ssl_handshake returned" \
2875 -c "! mbedtls_ssl_handshake returned" \
2876 -s "X509 - Certificate verification failed"
2877
Manuel Pégourié-Gonnarddf331a52015-01-08 16:43:07 +0100[diff] [blame]2878# Tests for certificate selection based on SHA verson
2879
2880run_test "Certificate hash: client TLS 1.2 -> SHA-2" \
2881 "$P_SRV crt_file=data_files/server5.crt \
2882 key_file=data_files/server5.key \
2883 crt_file2=data_files/server5-sha1.crt \
2884 key_file2=data_files/server5.key" \
2885 "$P_CLI force_version=tls1_2" \
2886 0 \
2887 -c "signed using.*ECDSA with SHA256" \
2888 -C "signed using.*ECDSA with SHA1"
2889
2890run_test "Certificate hash: client TLS 1.1 -> SHA-1" \
2891 "$P_SRV crt_file=data_files/server5.crt \
2892 key_file=data_files/server5.key \
2893 crt_file2=data_files/server5-sha1.crt \
2894 key_file2=data_files/server5.key" \
2895 "$P_CLI force_version=tls1_1" \
2896 0 \
2897 -C "signed using.*ECDSA with SHA256" \
2898 -c "signed using.*ECDSA with SHA1"
2899
2900run_test "Certificate hash: client TLS 1.0 -> SHA-1" \
2901 "$P_SRV crt_file=data_files/server5.crt \
2902 key_file=data_files/server5.key \
2903 crt_file2=data_files/server5-sha1.crt \
2904 key_file2=data_files/server5.key" \
2905 "$P_CLI force_version=tls1" \
2906 0 \
2907 -C "signed using.*ECDSA with SHA256" \
2908 -c "signed using.*ECDSA with SHA1"
2909
2910run_test "Certificate hash: client TLS 1.1, no SHA-1 -> SHA-2 (order 1)" \
2911 "$P_SRV crt_file=data_files/server5.crt \
2912 key_file=data_files/server5.key \
2913 crt_file2=data_files/server6.crt \
2914 key_file2=data_files/server6.key" \
2915 "$P_CLI force_version=tls1_1" \
2916 0 \
2917 -c "serial number.*09" \
2918 -c "signed using.*ECDSA with SHA256" \
2919 -C "signed using.*ECDSA with SHA1"
2920
2921run_test "Certificate hash: client TLS 1.1, no SHA-1 -> SHA-2 (order 2)" \
2922 "$P_SRV crt_file=data_files/server6.crt \
2923 key_file=data_files/server6.key \
2924 crt_file2=data_files/server5.crt \
2925 key_file2=data_files/server5.key" \
2926 "$P_CLI force_version=tls1_1" \
2927 0 \
2928 -c "serial number.*0A" \
2929 -c "signed using.*ECDSA with SHA256" \
2930 -C "signed using.*ECDSA with SHA1"
2931
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]2932# tests for SNI
2933
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2934run_test "SNI: no SNI callback" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]2935 "$P_SRV debug_level=3 \
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]2936 crt_file=data_files/server5.crt key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]2937 "$P_CLI server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]2938 0 \
2939 -S "parse ServerName extension" \
2940 -c "issuer name *: C=NL, O=PolarSSL, CN=Polarssl Test EC CA" \
2941 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]2942
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2943run_test "SNI: matching cert 1" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]2944 "$P_SRV debug_level=3 \
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]2945 crt_file=data_files/server5.crt key_file=data_files/server5.key \
Manuel Pégourié-Gonnard4d6f1782015-06-19 14:40:39 +0200[diff] [blame]2946 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]2947 "$P_CLI server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]2948 0 \
2949 -s "parse ServerName extension" \
2950 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
2951 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]2952
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2953run_test "SNI: matching cert 2" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]2954 "$P_SRV debug_level=3 \
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]2955 crt_file=data_files/server5.crt key_file=data_files/server5.key \
Manuel Pégourié-Gonnard4d6f1782015-06-19 14:40:39 +0200[diff] [blame]2956 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]2957 "$P_CLI server_name=polarssl.example" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]2958 0 \
2959 -s "parse ServerName extension" \
2960 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
2961 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]2962
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]2963run_test "SNI: no matching cert" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]2964 "$P_SRV debug_level=3 \
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]2965 crt_file=data_files/server5.crt key_file=data_files/server5.key \
Manuel Pégourié-Gonnard4d6f1782015-06-19 14:40:39 +0200[diff] [blame]2966 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]2967 "$P_CLI server_name=nonesuch.example" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]2968 1 \
2969 -s "parse ServerName extension" \
2970 -s "ssl_sni_wrapper() returned" \
2971 -s "mbedtls_ssl_handshake returned" \
2972 -c "mbedtls_ssl_handshake returned" \
2973 -c "SSL - A fatal alert message was received from our peer"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]2974
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]2975run_test "SNI: client auth no override: optional" \
2976 "$P_SRV debug_level=3 auth_mode=optional \
2977 crt_file=data_files/server5.crt key_file=data_files/server5.key \
2978 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-" \
2979 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]2980 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]2981 -S "skip write certificate request" \
2982 -C "skip parse certificate request" \
2983 -c "got a certificate request" \
2984 -C "skip write certificate" \
2985 -C "skip write certificate verify" \
2986 -S "skip parse certificate verify"
2987
2988run_test "SNI: client auth override: none -> optional" \
2989 "$P_SRV debug_level=3 auth_mode=none \
2990 crt_file=data_files/server5.crt key_file=data_files/server5.key \
2991 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,optional" \
2992 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]2993 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]2994 -S "skip write certificate request" \
2995 -C "skip parse certificate request" \
2996 -c "got a certificate request" \
2997 -C "skip write certificate" \
2998 -C "skip write certificate verify" \
2999 -S "skip parse certificate verify"
3000
3001run_test "SNI: client auth override: optional -> none" \
3002 "$P_SRV debug_level=3 auth_mode=optional \
3003 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3004 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,none" \
3005 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]3006 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]3007 -s "skip write certificate request" \
3008 -C "skip parse certificate request" \
3009 -c "got no certificate request" \
3010 -c "skip write certificate" \
3011 -c "skip write certificate verify" \
3012 -s "skip parse certificate verify"
3013
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]3014run_test "SNI: CA no override" \
3015 "$P_SRV debug_level=3 auth_mode=optional \
3016 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3017 ca_file=data_files/test-ca.crt \
3018 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,required" \
3019 "$P_CLI debug_level=3 server_name=localhost \
3020 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
3021 1 \
3022 -S "skip write certificate request" \
3023 -C "skip parse certificate request" \
3024 -c "got a certificate request" \
3025 -C "skip write certificate" \
3026 -C "skip write certificate verify" \
3027 -S "skip parse certificate verify" \
3028 -s "x509_verify_cert() returned" \
3029 -s "! The certificate is not correctly signed by the trusted CA" \
3030 -S "The certificate has been revoked (is on a CRL)"
3031
3032run_test "SNI: CA override" \
3033 "$P_SRV debug_level=3 auth_mode=optional \
3034 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3035 ca_file=data_files/test-ca.crt \
3036 sni=localhost,data_files/server2.crt,data_files/server2.key,data_files/test-ca2.crt,-,required" \
3037 "$P_CLI debug_level=3 server_name=localhost \
3038 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
3039 0 \
3040 -S "skip write certificate request" \
3041 -C "skip parse certificate request" \
3042 -c "got a certificate request" \
3043 -C "skip write certificate" \
3044 -C "skip write certificate verify" \
3045 -S "skip parse certificate verify" \
3046 -S "x509_verify_cert() returned" \
3047 -S "! The certificate is not correctly signed by the trusted CA" \
3048 -S "The certificate has been revoked (is on a CRL)"
3049
3050run_test "SNI: CA override with CRL" \
3051 "$P_SRV debug_level=3 auth_mode=optional \
3052 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3053 ca_file=data_files/test-ca.crt \
3054 sni=localhost,data_files/server2.crt,data_files/server2.key,data_files/test-ca2.crt,data_files/crl-ec-sha256.pem,required" \
3055 "$P_CLI debug_level=3 server_name=localhost \
3056 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
3057 1 \
3058 -S "skip write certificate request" \
3059 -C "skip parse certificate request" \
3060 -c "got a certificate request" \
3061 -C "skip write certificate" \
3062 -C "skip write certificate verify" \
3063 -S "skip parse certificate verify" \
3064 -s "x509_verify_cert() returned" \
3065 -S "! The certificate is not correctly signed by the trusted CA" \
3066 -s "The certificate has been revoked (is on a CRL)"
3067
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]3068# Tests for SNI and DTLS
3069
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]3070run_test "SNI: DTLS, no SNI callback" \
3071 "$P_SRV debug_level=3 dtls=1 \
3072 crt_file=data_files/server5.crt key_file=data_files/server5.key" \
3073 "$P_CLI server_name=localhost dtls=1" \
3074 0 \
3075 -S "parse ServerName extension" \
3076 -c "issuer name *: C=NL, O=PolarSSL, CN=Polarssl Test EC CA" \
3077 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
3078
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]3079run_test "SNI: DTLS, matching cert 1" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]3080 "$P_SRV debug_level=3 dtls=1 \
3081 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3082 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
3083 "$P_CLI server_name=localhost dtls=1" \
3084 0 \
3085 -s "parse ServerName extension" \
3086 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
3087 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
3088
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]3089run_test "SNI: DTLS, matching cert 2" \
3090 "$P_SRV debug_level=3 dtls=1 \
3091 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3092 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
3093 "$P_CLI server_name=polarssl.example dtls=1" \
3094 0 \
3095 -s "parse ServerName extension" \
3096 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
3097 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
3098
3099run_test "SNI: DTLS, no matching cert" \
3100 "$P_SRV debug_level=3 dtls=1 \
3101 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3102 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
3103 "$P_CLI server_name=nonesuch.example dtls=1" \
3104 1 \
3105 -s "parse ServerName extension" \
3106 -s "ssl_sni_wrapper() returned" \
3107 -s "mbedtls_ssl_handshake returned" \
3108 -c "mbedtls_ssl_handshake returned" \
3109 -c "SSL - A fatal alert message was received from our peer"
3110
3111run_test "SNI: DTLS, client auth no override: optional" \
3112 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
3113 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3114 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-" \
3115 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
3116 0 \
3117 -S "skip write certificate request" \
3118 -C "skip parse certificate request" \
3119 -c "got a certificate request" \
3120 -C "skip write certificate" \
3121 -C "skip write certificate verify" \
3122 -S "skip parse certificate verify"
3123
3124run_test "SNI: DTLS, client auth override: none -> optional" \
3125 "$P_SRV debug_level=3 auth_mode=none dtls=1 \
3126 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3127 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,optional" \
3128 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
3129 0 \
3130 -S "skip write certificate request" \
3131 -C "skip parse certificate request" \
3132 -c "got a certificate request" \
3133 -C "skip write certificate" \
3134 -C "skip write certificate verify" \
3135 -S "skip parse certificate verify"
3136
3137run_test "SNI: DTLS, client auth override: optional -> none" \
3138 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
3139 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3140 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,none" \
3141 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
3142 0 \
3143 -s "skip write certificate request" \
3144 -C "skip parse certificate request" \
3145 -c "got no certificate request" \
3146 -c "skip write certificate" \
3147 -c "skip write certificate verify" \
3148 -s "skip parse certificate verify"
3149
3150run_test "SNI: DTLS, CA no override" \
3151 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
3152 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3153 ca_file=data_files/test-ca.crt \
3154 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,required" \
3155 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
3156 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
3157 1 \
3158 -S "skip write certificate request" \
3159 -C "skip parse certificate request" \
3160 -c "got a certificate request" \
3161 -C "skip write certificate" \
3162 -C "skip write certificate verify" \
3163 -S "skip parse certificate verify" \
3164 -s "x509_verify_cert() returned" \
3165 -s "! The certificate is not correctly signed by the trusted CA" \
3166 -S "The certificate has been revoked (is on a CRL)"
3167
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]3168run_test "SNI: DTLS, CA override" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]3169 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
3170 crt_file=data_files/server5.crt key_file=data_files/server5.key \
3171 ca_file=data_files/test-ca.crt \
3172 sni=localhost,data_files/server2.crt,data_files/server2.key,data_files/test-ca2.crt,-,required" \
3173 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
3174 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
3175 0 \
3176 -S "skip write certificate request" \
3177 -C "skip parse certificate request" \
3178 -c "got a certificate request" \
3179 -C "skip write certificate" \
3180 -C "skip write certificate verify" \
3181 -S "skip parse certificate verify" \
3182 -S "x509_verify_cert() returned" \
3183 -S "! The certificate is not correctly signed by the trusted CA" \
3184 -S "The certificate has been revoked (is on a CRL)"
3185
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]3186run_test "SNI: DTLS, CA override with CRL" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]3187 "$P_SRV debug_level=3 auth_mode=optional \
3188 crt_file=data_files/server5.crt key_file=data_files/server5.key dtls=1 \
3189 ca_file=data_files/test-ca.crt \
3190 sni=localhost,data_files/server2.crt,data_files/server2.key,data_files/test-ca2.crt,data_files/crl-ec-sha256.pem,required" \
3191 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
3192 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
3193 1 \
3194 -S "skip write certificate request" \
3195 -C "skip parse certificate request" \
3196 -c "got a certificate request" \
3197 -C "skip write certificate" \
3198 -C "skip write certificate verify" \
3199 -S "skip parse certificate verify" \
3200 -s "x509_verify_cert() returned" \
3201 -S "! The certificate is not correctly signed by the trusted CA" \
3202 -s "The certificate has been revoked (is on a CRL)"
3203
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3204# Tests for non-blocking I/O: exercise a variety of handshake flows
3205
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3206run_test "Non-blocking I/O: basic handshake" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3207 "$P_SRV nbio=2 tickets=0 auth_mode=none" \
3208 "$P_CLI nbio=2 tickets=0" \
3209 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3210 -S "mbedtls_ssl_handshake returned" \
3211 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3212 -c "Read from server: .* bytes read"
3213
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3214run_test "Non-blocking I/O: client auth" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3215 "$P_SRV nbio=2 tickets=0 auth_mode=required" \
3216 "$P_CLI nbio=2 tickets=0" \
3217 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3218 -S "mbedtls_ssl_handshake returned" \
3219 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3220 -c "Read from server: .* bytes read"
3221
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3222run_test "Non-blocking I/O: ticket" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3223 "$P_SRV nbio=2 tickets=1 auth_mode=none" \
3224 "$P_CLI nbio=2 tickets=1" \
3225 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3226 -S "mbedtls_ssl_handshake returned" \
3227 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3228 -c "Read from server: .* bytes read"
3229
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3230run_test "Non-blocking I/O: ticket + client auth" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3231 "$P_SRV nbio=2 tickets=1 auth_mode=required" \
3232 "$P_CLI nbio=2 tickets=1" \
3233 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3234 -S "mbedtls_ssl_handshake returned" \
3235 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3236 -c "Read from server: .* bytes read"
3237
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3238run_test "Non-blocking I/O: ticket + client auth + resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3239 "$P_SRV nbio=2 tickets=1 auth_mode=required" \
3240 "$P_CLI nbio=2 tickets=1 reconnect=1" \
3241 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3242 -S "mbedtls_ssl_handshake returned" \
3243 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3244 -c "Read from server: .* bytes read"
3245
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3246run_test "Non-blocking I/O: ticket + resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3247 "$P_SRV nbio=2 tickets=1 auth_mode=none" \
3248 "$P_CLI nbio=2 tickets=1 reconnect=1" \
3249 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3250 -S "mbedtls_ssl_handshake returned" \
3251 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3252 -c "Read from server: .* bytes read"
3253
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3254run_test "Non-blocking I/O: session-id resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3255 "$P_SRV nbio=2 tickets=0 auth_mode=none" \
3256 "$P_CLI nbio=2 tickets=0 reconnect=1" \
3257 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3258 -S "mbedtls_ssl_handshake returned" \
3259 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]3260 -c "Read from server: .* bytes read"
3261
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]3262# Tests for event-driven I/O: exercise a variety of handshake flows
3263
3264run_test "Event-driven I/O: basic handshake" \
3265 "$P_SRV event=1 tickets=0 auth_mode=none" \
3266 "$P_CLI event=1 tickets=0" \
3267 0 \
3268 -S "mbedtls_ssl_handshake returned" \
3269 -C "mbedtls_ssl_handshake returned" \
3270 -c "Read from server: .* bytes read"
3271
3272run_test "Event-driven I/O: client auth" \
3273 "$P_SRV event=1 tickets=0 auth_mode=required" \
3274 "$P_CLI event=1 tickets=0" \
3275 0 \
3276 -S "mbedtls_ssl_handshake returned" \
3277 -C "mbedtls_ssl_handshake returned" \
3278 -c "Read from server: .* bytes read"
3279
3280run_test "Event-driven I/O: ticket" \
3281 "$P_SRV event=1 tickets=1 auth_mode=none" \
3282 "$P_CLI event=1 tickets=1" \
3283 0 \
3284 -S "mbedtls_ssl_handshake returned" \
3285 -C "mbedtls_ssl_handshake returned" \
3286 -c "Read from server: .* bytes read"
3287
3288run_test "Event-driven I/O: ticket + client auth" \
3289 "$P_SRV event=1 tickets=1 auth_mode=required" \
3290 "$P_CLI event=1 tickets=1" \
3291 0 \
3292 -S "mbedtls_ssl_handshake returned" \
3293 -C "mbedtls_ssl_handshake returned" \
3294 -c "Read from server: .* bytes read"
3295
3296run_test "Event-driven I/O: ticket + client auth + resume" \
3297 "$P_SRV event=1 tickets=1 auth_mode=required" \
3298 "$P_CLI event=1 tickets=1 reconnect=1" \
3299 0 \
3300 -S "mbedtls_ssl_handshake returned" \
3301 -C "mbedtls_ssl_handshake returned" \
3302 -c "Read from server: .* bytes read"
3303
3304run_test "Event-driven I/O: ticket + resume" \
3305 "$P_SRV event=1 tickets=1 auth_mode=none" \
3306 "$P_CLI event=1 tickets=1 reconnect=1" \
3307 0 \
3308 -S "mbedtls_ssl_handshake returned" \
3309 -C "mbedtls_ssl_handshake returned" \
3310 -c "Read from server: .* bytes read"
3311
3312run_test "Event-driven I/O: session-id resume" \
3313 "$P_SRV event=1 tickets=0 auth_mode=none" \
3314 "$P_CLI event=1 tickets=0 reconnect=1" \
3315 0 \
3316 -S "mbedtls_ssl_handshake returned" \
3317 -C "mbedtls_ssl_handshake returned" \
3318 -c "Read from server: .* bytes read"
3319
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]3320run_test "Event-driven I/O, DTLS: basic handshake" \
3321 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=none" \
3322 "$P_CLI dtls=1 event=1 tickets=0" \
3323 0 \
3324 -c "Read from server: .* bytes read"
3325
3326run_test "Event-driven I/O, DTLS: client auth" \
3327 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=required" \
3328 "$P_CLI dtls=1 event=1 tickets=0" \
3329 0 \
3330 -c "Read from server: .* bytes read"
3331
3332run_test "Event-driven I/O, DTLS: ticket" \
3333 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=none" \
3334 "$P_CLI dtls=1 event=1 tickets=1" \
3335 0 \
3336 -c "Read from server: .* bytes read"
3337
3338run_test "Event-driven I/O, DTLS: ticket + client auth" \
3339 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=required" \
3340 "$P_CLI dtls=1 event=1 tickets=1" \
3341 0 \
3342 -c "Read from server: .* bytes read"
3343
3344run_test "Event-driven I/O, DTLS: ticket + client auth + resume" \
3345 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=required" \
3346 "$P_CLI dtls=1 event=1 tickets=1 reconnect=1" \
3347 0 \
3348 -c "Read from server: .* bytes read"
3349
3350run_test "Event-driven I/O, DTLS: ticket + resume" \
3351 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=none" \
3352 "$P_CLI dtls=1 event=1 tickets=1 reconnect=1" \
3353 0 \
3354 -c "Read from server: .* bytes read"
3355
3356run_test "Event-driven I/O, DTLS: session-id resume" \
3357 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=none" \
3358 "$P_CLI dtls=1 event=1 tickets=0 reconnect=1" \
3359 0 \
3360 -c "Read from server: .* bytes read"
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]3361
3362# This test demonstrates the need for the mbedtls_ssl_check_pending function.
3363# During session resumption, the client will send its ApplicationData record
3364# within the same datagram as the Finished messages. In this situation, the
3365# server MUST NOT idle on the underlying transport after handshake completion,
3366# because the ApplicationData request has already been queued internally.
3367run_test "Event-driven I/O, DTLS: session-id resume, UDP packing" \
Hanno Becker8d832182018-03-15 10:14:19 +0000[diff] [blame]3368 -p "$P_PXY pack=50" \
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]3369 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=required" \
3370 "$P_CLI dtls=1 event=1 tickets=0 reconnect=1" \
3371 0 \
3372 -c "Read from server: .* bytes read"
3373
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]3374# Tests for version negotiation
3375
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3376run_test "Version check: all -> 1.2" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3377 "$P_SRV" \
3378 "$P_CLI" \
3379 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3380 -S "mbedtls_ssl_handshake returned" \
3381 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3382 -s "Protocol is TLSv1.2" \
3383 -c "Protocol is TLSv1.2"
3384
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3385run_test "Version check: cli max 1.1 -> 1.1" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3386 "$P_SRV" \
3387 "$P_CLI max_version=tls1_1" \
3388 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3389 -S "mbedtls_ssl_handshake returned" \
3390 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3391 -s "Protocol is TLSv1.1" \
3392 -c "Protocol is TLSv1.1"
3393
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3394run_test "Version check: srv max 1.1 -> 1.1" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3395 "$P_SRV max_version=tls1_1" \
3396 "$P_CLI" \
3397 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3398 -S "mbedtls_ssl_handshake returned" \
3399 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3400 -s "Protocol is TLSv1.1" \
3401 -c "Protocol is TLSv1.1"
3402
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3403run_test "Version check: cli+srv max 1.1 -> 1.1" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3404 "$P_SRV max_version=tls1_1" \
3405 "$P_CLI max_version=tls1_1" \
3406 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3407 -S "mbedtls_ssl_handshake returned" \
3408 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3409 -s "Protocol is TLSv1.1" \
3410 -c "Protocol is TLSv1.1"
3411
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3412run_test "Version check: cli max 1.1, srv min 1.1 -> 1.1" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3413 "$P_SRV min_version=tls1_1" \
3414 "$P_CLI max_version=tls1_1" \
3415 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3416 -S "mbedtls_ssl_handshake returned" \
3417 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3418 -s "Protocol is TLSv1.1" \
3419 -c "Protocol is TLSv1.1"
3420
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3421run_test "Version check: cli min 1.1, srv max 1.1 -> 1.1" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3422 "$P_SRV max_version=tls1_1" \
3423 "$P_CLI min_version=tls1_1" \
3424 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3425 -S "mbedtls_ssl_handshake returned" \
3426 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3427 -s "Protocol is TLSv1.1" \
3428 -c "Protocol is TLSv1.1"
3429
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3430run_test "Version check: cli min 1.2, srv max 1.1 -> fail" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3431 "$P_SRV max_version=tls1_1" \
3432 "$P_CLI min_version=tls1_2" \
3433 1 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3434 -s "mbedtls_ssl_handshake returned" \
3435 -c "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3436 -c "SSL - Handshake protocol not within min/max boundaries"
3437
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3438run_test "Version check: srv min 1.2, cli max 1.1 -> fail" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3439 "$P_SRV min_version=tls1_2" \
3440 "$P_CLI max_version=tls1_1" \
3441 1 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]3442 -s "mbedtls_ssl_handshake returned" \
3443 -c "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]3444 -s "SSL - Handshake protocol not within min/max boundaries"
3445
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]3446# Tests for ALPN extension
3447
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3448run_test "ALPN: none" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3449 "$P_SRV debug_level=3" \
3450 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]3451 0 \
3452 -C "client hello, adding alpn extension" \
3453 -S "found alpn extension" \
3454 -C "got an alert message, type: \\[2:120]" \
3455 -S "server hello, adding alpn extension" \
3456 -C "found alpn extension " \
3457 -C "Application Layer Protocol is" \
3458 -S "Application Layer Protocol is"
3459
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3460run_test "ALPN: client only" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3461 "$P_SRV debug_level=3" \
3462 "$P_CLI debug_level=3 alpn=abc,1234" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]3463 0 \
3464 -c "client hello, adding alpn extension" \
3465 -s "found alpn extension" \
3466 -C "got an alert message, type: \\[2:120]" \
3467 -S "server hello, adding alpn extension" \
3468 -C "found alpn extension " \
3469 -c "Application Layer Protocol is (none)" \
3470 -S "Application Layer Protocol is"
3471
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3472run_test "ALPN: server only" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3473 "$P_SRV debug_level=3 alpn=abc,1234" \
3474 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]3475 0 \
3476 -C "client hello, adding alpn extension" \
3477 -S "found alpn extension" \
3478 -C "got an alert message, type: \\[2:120]" \
3479 -S "server hello, adding alpn extension" \
3480 -C "found alpn extension " \
3481 -C "Application Layer Protocol is" \
3482 -s "Application Layer Protocol is (none)"
3483
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3484run_test "ALPN: both, common cli1-srv1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3485 "$P_SRV debug_level=3 alpn=abc,1234" \
3486 "$P_CLI debug_level=3 alpn=abc,1234" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]3487 0 \
3488 -c "client hello, adding alpn extension" \
3489 -s "found alpn extension" \
3490 -C "got an alert message, type: \\[2:120]" \
3491 -s "server hello, adding alpn extension" \
3492 -c "found alpn extension" \
3493 -c "Application Layer Protocol is abc" \
3494 -s "Application Layer Protocol is abc"
3495
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3496run_test "ALPN: both, common cli2-srv1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3497 "$P_SRV debug_level=3 alpn=abc,1234" \
3498 "$P_CLI debug_level=3 alpn=1234,abc" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]3499 0 \
3500 -c "client hello, adding alpn extension" \
3501 -s "found alpn extension" \
3502 -C "got an alert message, type: \\[2:120]" \
3503 -s "server hello, adding alpn extension" \
3504 -c "found alpn extension" \
3505 -c "Application Layer Protocol is abc" \
3506 -s "Application Layer Protocol is abc"
3507
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3508run_test "ALPN: both, common cli1-srv2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3509 "$P_SRV debug_level=3 alpn=abc,1234" \
3510 "$P_CLI debug_level=3 alpn=1234,abcde" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]3511 0 \
3512 -c "client hello, adding alpn extension" \
3513 -s "found alpn extension" \
3514 -C "got an alert message, type: \\[2:120]" \
3515 -s "server hello, adding alpn extension" \
3516 -c "found alpn extension" \
3517 -c "Application Layer Protocol is 1234" \
3518 -s "Application Layer Protocol is 1234"
3519
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3520run_test "ALPN: both, no common" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3521 "$P_SRV debug_level=3 alpn=abc,123" \
3522 "$P_CLI debug_level=3 alpn=1234,abcde" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]3523 1 \
3524 -c "client hello, adding alpn extension" \
3525 -s "found alpn extension" \
3526 -c "got an alert message, type: \\[2:120]" \
3527 -S "server hello, adding alpn extension" \
3528 -C "found alpn extension" \
3529 -C "Application Layer Protocol is 1234" \
3530 -S "Application Layer Protocol is 1234"
3531
Manuel Pégourié-Gonnard83d8c732014-04-07 13:24:21 +0200[diff] [blame]3532
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3533# Tests for keyUsage in leaf certificates, part 1:
3534# server-side certificate/suite selection
3535
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3536run_test "keyUsage srv: RSA, digitalSignature -> (EC)DHE-RSA" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3537 "$P_SRV key_file=data_files/server2.key \
3538 crt_file=data_files/server2.ku-ds.crt" \
3539 "$P_CLI" \
3540 0 \
Manuel Pégourié-Gonnard17cde5f2014-05-22 14:42:39 +0200[diff] [blame]3541 -c "Ciphersuite is TLS-[EC]*DHE-RSA-WITH-"
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3542
3543
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3544run_test "keyUsage srv: RSA, keyEncipherment -> RSA" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3545 "$P_SRV key_file=data_files/server2.key \
3546 crt_file=data_files/server2.ku-ke.crt" \
3547 "$P_CLI" \
3548 0 \
3549 -c "Ciphersuite is TLS-RSA-WITH-"
3550
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3551run_test "keyUsage srv: RSA, keyAgreement -> fail" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]3552 "$P_SRV key_file=data_files/server2.key \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3553 crt_file=data_files/server2.ku-ka.crt" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]3554 "$P_CLI" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3555 1 \
3556 -C "Ciphersuite is "
3557
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3558run_test "keyUsage srv: ECDSA, digitalSignature -> ECDHE-ECDSA" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3559 "$P_SRV key_file=data_files/server5.key \
3560 crt_file=data_files/server5.ku-ds.crt" \
3561 "$P_CLI" \
3562 0 \
3563 -c "Ciphersuite is TLS-ECDHE-ECDSA-WITH-"
3564
3565
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3566run_test "keyUsage srv: ECDSA, keyAgreement -> ECDH-" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3567 "$P_SRV key_file=data_files/server5.key \
3568 crt_file=data_files/server5.ku-ka.crt" \
3569 "$P_CLI" \
3570 0 \
3571 -c "Ciphersuite is TLS-ECDH-"
3572
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3573run_test "keyUsage srv: ECDSA, keyEncipherment -> fail" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]3574 "$P_SRV key_file=data_files/server5.key \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3575 crt_file=data_files/server5.ku-ke.crt" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]3576 "$P_CLI" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3577 1 \
3578 -C "Ciphersuite is "
3579
3580# Tests for keyUsage in leaf certificates, part 2:
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3581# client-side checking of server cert
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3582
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3583run_test "keyUsage cli: DigitalSignature+KeyEncipherment, RSA: OK" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3584 "$O_SRV -key data_files/server2.key \
3585 -cert data_files/server2.ku-ds_ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3586 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3587 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
3588 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3589 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3590 -C "Processing of the Certificate handshake message failed" \
3591 -c "Ciphersuite is TLS-"
3592
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3593run_test "keyUsage cli: DigitalSignature+KeyEncipherment, DHE-RSA: OK" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3594 "$O_SRV -key data_files/server2.key \
3595 -cert data_files/server2.ku-ds_ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3596 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3597 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
3598 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3599 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3600 -C "Processing of the Certificate handshake message failed" \
3601 -c "Ciphersuite is TLS-"
3602
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3603run_test "keyUsage cli: KeyEncipherment, RSA: OK" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3604 "$O_SRV -key data_files/server2.key \
3605 -cert data_files/server2.ku-ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3606 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3607 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
3608 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3609 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3610 -C "Processing of the Certificate handshake message failed" \
3611 -c "Ciphersuite is TLS-"
3612
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3613run_test "keyUsage cli: KeyEncipherment, DHE-RSA: fail" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3614 "$O_SRV -key data_files/server2.key \
3615 -cert data_files/server2.ku-ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3616 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3617 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
3618 1 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3619 -c "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3620 -c "Processing of the Certificate handshake message failed" \
3621 -C "Ciphersuite is TLS-"
3622
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]3623run_test "keyUsage cli: KeyEncipherment, DHE-RSA: fail, soft" \
3624 "$O_SRV -key data_files/server2.key \
3625 -cert data_files/server2.ku-ke.crt" \
3626 "$P_CLI debug_level=1 auth_mode=optional \
3627 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
3628 0 \
3629 -c "bad certificate (usage extensions)" \
3630 -C "Processing of the Certificate handshake message failed" \
3631 -c "Ciphersuite is TLS-" \
3632 -c "! Usage does not match the keyUsage extension"
3633
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3634run_test "keyUsage cli: DigitalSignature, DHE-RSA: OK" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3635 "$O_SRV -key data_files/server2.key \
3636 -cert data_files/server2.ku-ds.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3637 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3638 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
3639 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3640 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3641 -C "Processing of the Certificate handshake message failed" \
3642 -c "Ciphersuite is TLS-"
3643
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3644run_test "keyUsage cli: DigitalSignature, RSA: fail" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3645 "$O_SRV -key data_files/server2.key \
3646 -cert data_files/server2.ku-ds.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3647 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3648 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
3649 1 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3650 -c "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]3651 -c "Processing of the Certificate handshake message failed" \
3652 -C "Ciphersuite is TLS-"
3653
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]3654run_test "keyUsage cli: DigitalSignature, RSA: fail, soft" \
3655 "$O_SRV -key data_files/server2.key \
3656 -cert data_files/server2.ku-ds.crt" \
3657 "$P_CLI debug_level=1 auth_mode=optional \
3658 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
3659 0 \
3660 -c "bad certificate (usage extensions)" \
3661 -C "Processing of the Certificate handshake message failed" \
3662 -c "Ciphersuite is TLS-" \
3663 -c "! Usage does not match the keyUsage extension"
3664
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3665# Tests for keyUsage in leaf certificates, part 3:
3666# server-side checking of client cert
3667
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3668run_test "keyUsage cli-auth: RSA, DigitalSignature: OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3669 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3670 "$O_CLI -key data_files/server2.key \
3671 -cert data_files/server2.ku-ds.crt" \
3672 0 \
3673 -S "bad certificate (usage extensions)" \
3674 -S "Processing of the Certificate handshake message failed"
3675
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3676run_test "keyUsage cli-auth: RSA, KeyEncipherment: fail (soft)" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3677 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3678 "$O_CLI -key data_files/server2.key \
3679 -cert data_files/server2.ku-ke.crt" \
3680 0 \
3681 -s "bad certificate (usage extensions)" \
3682 -S "Processing of the Certificate handshake message failed"
3683
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3684run_test "keyUsage cli-auth: RSA, KeyEncipherment: fail (hard)" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3685 "$P_SRV debug_level=1 auth_mode=required" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3686 "$O_CLI -key data_files/server2.key \
3687 -cert data_files/server2.ku-ke.crt" \
3688 1 \
3689 -s "bad certificate (usage extensions)" \
3690 -s "Processing of the Certificate handshake message failed"
3691
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3692run_test "keyUsage cli-auth: ECDSA, DigitalSignature: OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3693 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3694 "$O_CLI -key data_files/server5.key \
3695 -cert data_files/server5.ku-ds.crt" \
3696 0 \
3697 -S "bad certificate (usage extensions)" \
3698 -S "Processing of the Certificate handshake message failed"
3699
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3700run_test "keyUsage cli-auth: ECDSA, KeyAgreement: fail (soft)" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3701 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]3702 "$O_CLI -key data_files/server5.key \
3703 -cert data_files/server5.ku-ka.crt" \
3704 0 \
3705 -s "bad certificate (usage extensions)" \
3706 -S "Processing of the Certificate handshake message failed"
3707
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3708# Tests for extendedKeyUsage, part 1: server-side certificate/suite selection
3709
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3710run_test "extKeyUsage srv: serverAuth -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3711 "$P_SRV key_file=data_files/server5.key \
3712 crt_file=data_files/server5.eku-srv.crt" \
3713 "$P_CLI" \
3714 0
3715
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3716run_test "extKeyUsage srv: serverAuth,clientAuth -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3717 "$P_SRV key_file=data_files/server5.key \
3718 crt_file=data_files/server5.eku-srv.crt" \
3719 "$P_CLI" \
3720 0
3721
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3722run_test "extKeyUsage srv: codeSign,anyEKU -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3723 "$P_SRV key_file=data_files/server5.key \
3724 crt_file=data_files/server5.eku-cs_any.crt" \
3725 "$P_CLI" \
3726 0
3727
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3728run_test "extKeyUsage srv: codeSign -> fail" \
Manuel Pégourié-Gonnard7eb58cb2015-07-07 11:54:14 +0200[diff] [blame]3729 "$P_SRV key_file=data_files/server5.key \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3730 crt_file=data_files/server5.eku-cli.crt" \
Manuel Pégourié-Gonnard7eb58cb2015-07-07 11:54:14 +0200[diff] [blame]3731 "$P_CLI" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3732 1
3733
3734# Tests for extendedKeyUsage, part 2: client-side checking of server cert
3735
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3736run_test "extKeyUsage cli: serverAuth -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3737 "$O_SRV -key data_files/server5.key \
3738 -cert data_files/server5.eku-srv.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3739 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3740 0 \
3741 -C "bad certificate (usage extensions)" \
3742 -C "Processing of the Certificate handshake message failed" \
3743 -c "Ciphersuite is TLS-"
3744
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3745run_test "extKeyUsage cli: serverAuth,clientAuth -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3746 "$O_SRV -key data_files/server5.key \
3747 -cert data_files/server5.eku-srv_cli.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3748 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3749 0 \
3750 -C "bad certificate (usage extensions)" \
3751 -C "Processing of the Certificate handshake message failed" \
3752 -c "Ciphersuite is TLS-"
3753
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3754run_test "extKeyUsage cli: codeSign,anyEKU -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3755 "$O_SRV -key data_files/server5.key \
3756 -cert data_files/server5.eku-cs_any.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3757 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3758 0 \
3759 -C "bad certificate (usage extensions)" \
3760 -C "Processing of the Certificate handshake message failed" \
3761 -c "Ciphersuite is TLS-"
3762
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3763run_test "extKeyUsage cli: codeSign -> fail" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3764 "$O_SRV -key data_files/server5.key \
3765 -cert data_files/server5.eku-cs.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3766 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3767 1 \
3768 -c "bad certificate (usage extensions)" \
3769 -c "Processing of the Certificate handshake message failed" \
3770 -C "Ciphersuite is TLS-"
3771
3772# Tests for extendedKeyUsage, part 3: server-side checking of client cert
3773
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3774run_test "extKeyUsage cli-auth: clientAuth -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3775 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3776 "$O_CLI -key data_files/server5.key \
3777 -cert data_files/server5.eku-cli.crt" \
3778 0 \
3779 -S "bad certificate (usage extensions)" \
3780 -S "Processing of the Certificate handshake message failed"
3781
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3782run_test "extKeyUsage cli-auth: serverAuth,clientAuth -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3783 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3784 "$O_CLI -key data_files/server5.key \
3785 -cert data_files/server5.eku-srv_cli.crt" \
3786 0 \
3787 -S "bad certificate (usage extensions)" \
3788 -S "Processing of the Certificate handshake message failed"
3789
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3790run_test "extKeyUsage cli-auth: codeSign,anyEKU -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3791 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3792 "$O_CLI -key data_files/server5.key \
3793 -cert data_files/server5.eku-cs_any.crt" \
3794 0 \
3795 -S "bad certificate (usage extensions)" \
3796 -S "Processing of the Certificate handshake message failed"
3797
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3798run_test "extKeyUsage cli-auth: codeSign -> fail (soft)" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3799 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3800 "$O_CLI -key data_files/server5.key \
3801 -cert data_files/server5.eku-cs.crt" \
3802 0 \
3803 -s "bad certificate (usage extensions)" \
3804 -S "Processing of the Certificate handshake message failed"
3805
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3806run_test "extKeyUsage cli-auth: codeSign -> fail (hard)" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3807 "$P_SRV debug_level=1 auth_mode=required" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]3808 "$O_CLI -key data_files/server5.key \
3809 -cert data_files/server5.eku-cs.crt" \
3810 1 \
3811 -s "bad certificate (usage extensions)" \
3812 -s "Processing of the Certificate handshake message failed"
3813
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]3814# Tests for DHM parameters loading
3815
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3816run_test "DHM parameters: reference" \
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]3817 "$P_SRV" \
3818 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
3819 debug_level=3" \
3820 0 \
3821 -c "value of 'DHM: P ' (2048 bits)" \
Hanno Becker13be9902017-09-27 17:17:30 +0100[diff] [blame]3822 -c "value of 'DHM: G ' (2 bits)"
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]3823
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3824run_test "DHM parameters: other parameters" \
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]3825 "$P_SRV dhm_file=data_files/dhparams.pem" \
3826 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
3827 debug_level=3" \
3828 0 \
3829 -c "value of 'DHM: P ' (1024 bits)" \
3830 -c "value of 'DHM: G ' (2 bits)"
3831
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]3832# Tests for DHM client-side size checking
3833
3834run_test "DHM size: server default, client default, OK" \
3835 "$P_SRV" \
3836 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
3837 debug_level=1" \
3838 0 \
3839 -C "DHM prime too short:"
3840
3841run_test "DHM size: server default, client 2048, OK" \
3842 "$P_SRV" \
3843 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
3844 debug_level=1 dhmlen=2048" \
3845 0 \
3846 -C "DHM prime too short:"
3847
3848run_test "DHM size: server 1024, client default, OK" \
3849 "$P_SRV dhm_file=data_files/dhparams.pem" \
3850 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
3851 debug_level=1" \
3852 0 \
3853 -C "DHM prime too short:"
3854
3855run_test "DHM size: server 1000, client default, rejected" \
3856 "$P_SRV dhm_file=data_files/dh.1000.pem" \
3857 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
3858 debug_level=1" \
3859 1 \
3860 -c "DHM prime too short:"
3861
3862run_test "DHM size: server default, client 2049, rejected" \
3863 "$P_SRV" \
3864 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
3865 debug_level=1 dhmlen=2049" \
3866 1 \
3867 -c "DHM prime too short:"
3868
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3869# Tests for PSK callback
3870
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3871run_test "PSK callback: psk, no callback" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3872 "$P_SRV psk=abc123 psk_identity=foo" \
3873 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
3874 psk_identity=foo psk=abc123" \
3875 0 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]3876 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnard10c3c9f2014-06-10 15:28:52 +0200[diff] [blame]3877 -S "SSL - Unknown identity received" \
3878 -S "SSL - Verification of the message MAC failed"
3879
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3880run_test "PSK callback: no psk, no callback" \
Manuel Pégourié-Gonnard10c3c9f2014-06-10 15:28:52 +0200[diff] [blame]3881 "$P_SRV" \
3882 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
3883 psk_identity=foo psk=abc123" \
3884 1 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]3885 -s "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3886 -S "SSL - Unknown identity received" \
3887 -S "SSL - Verification of the message MAC failed"
3888
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3889run_test "PSK callback: callback overrides other settings" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3890 "$P_SRV psk=abc123 psk_identity=foo psk_list=abc,dead,def,beef" \
3891 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
3892 psk_identity=foo psk=abc123" \
3893 1 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]3894 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3895 -s "SSL - Unknown identity received" \
3896 -S "SSL - Verification of the message MAC failed"
3897
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3898run_test "PSK callback: first id matches" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3899 "$P_SRV psk_list=abc,dead,def,beef" \
3900 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
3901 psk_identity=abc psk=dead" \
3902 0 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]3903 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3904 -S "SSL - Unknown identity received" \
3905 -S "SSL - Verification of the message MAC failed"
3906
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3907run_test "PSK callback: second id matches" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3908 "$P_SRV psk_list=abc,dead,def,beef" \
3909 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
3910 psk_identity=def psk=beef" \
3911 0 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]3912 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3913 -S "SSL - Unknown identity received" \
3914 -S "SSL - Verification of the message MAC failed"
3915
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3916run_test "PSK callback: no match" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3917 "$P_SRV psk_list=abc,dead,def,beef" \
3918 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
3919 psk_identity=ghi psk=beef" \
3920 1 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]3921 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3922 -s "SSL - Unknown identity received" \
3923 -S "SSL - Verification of the message MAC failed"
3924
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3925run_test "PSK callback: wrong key" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3926 "$P_SRV psk_list=abc,dead,def,beef" \
3927 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
3928 psk_identity=abc psk=beef" \
3929 1 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]3930 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]3931 -S "SSL - Unknown identity received" \
3932 -s "SSL - Verification of the message MAC failed"
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]3933
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]3934# Tests for EC J-PAKE
3935
Manuel Pégourié-Gonnard12ca6f52015-10-20 15:24:51 +0200[diff] [blame]3936requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]3937run_test "ECJPAKE: client not configured" \
3938 "$P_SRV debug_level=3" \
3939 "$P_CLI debug_level=3" \
3940 0 \
3941 -C "add ciphersuite: c0ff" \
3942 -C "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]3943 -S "found ecjpake kkpp extension" \
3944 -S "skip ecjpake kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]3945 -S "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]3946 -S "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]3947 -C "found ecjpake_kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]3948 -S "None of the common ciphersuites is usable"
3949
Manuel Pégourié-Gonnard12ca6f52015-10-20 15:24:51 +0200[diff] [blame]3950requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]3951run_test "ECJPAKE: server not configured" \
3952 "$P_SRV debug_level=3" \
3953 "$P_CLI debug_level=3 ecjpake_pw=bla \
3954 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
3955 1 \
3956 -c "add ciphersuite: c0ff" \
3957 -c "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]3958 -s "found ecjpake kkpp extension" \
3959 -s "skip ecjpake kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]3960 -s "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]3961 -S "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]3962 -C "found ecjpake_kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]3963 -s "None of the common ciphersuites is usable"
3964
Manuel Pégourié-Gonnard12ca6f52015-10-20 15:24:51 +0200[diff] [blame]3965requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]3966run_test "ECJPAKE: working, TLS" \
3967 "$P_SRV debug_level=3 ecjpake_pw=bla" \
3968 "$P_CLI debug_level=3 ecjpake_pw=bla \
3969 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
Manuel Pégourié-Gonnard0f1660a2015-09-16 22:41:06 +0200[diff] [blame]3970 0 \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]3971 -c "add ciphersuite: c0ff" \
3972 -c "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]3973 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]3974 -s "found ecjpake kkpp extension" \
3975 -S "skip ecjpake kkpp extension" \
3976 -S "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]3977 -s "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]3978 -c "found ecjpake_kkpp extension" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]3979 -S "None of the common ciphersuites is usable" \
3980 -S "SSL - Verification of the message MAC failed"
3981
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]3982server_needs_more_time 1
Manuel Pégourié-Gonnard12ca6f52015-10-20 15:24:51 +0200[diff] [blame]3983requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]3984run_test "ECJPAKE: password mismatch, TLS" \
3985 "$P_SRV debug_level=3 ecjpake_pw=bla" \
3986 "$P_CLI debug_level=3 ecjpake_pw=bad \
3987 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
3988 1 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]3989 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]3990 -s "SSL - Verification of the message MAC failed"
3991
Manuel Pégourié-Gonnard12ca6f52015-10-20 15:24:51 +0200[diff] [blame]3992requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]3993run_test "ECJPAKE: working, DTLS" \
3994 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla" \
3995 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bla \
3996 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
3997 0 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]3998 -c "re-using cached ecjpake parameters" \
3999 -S "SSL - Verification of the message MAC failed"
4000
Manuel Pégourié-Gonnard12ca6f52015-10-20 15:24:51 +0200[diff] [blame]4001requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]4002run_test "ECJPAKE: working, DTLS, no cookie" \
4003 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla cookies=0" \
4004 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bla \
4005 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
4006 0 \
4007 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]4008 -S "SSL - Verification of the message MAC failed"
4009
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]4010server_needs_more_time 1
Manuel Pégourié-Gonnard12ca6f52015-10-20 15:24:51 +0200[diff] [blame]4011requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]4012run_test "ECJPAKE: password mismatch, DTLS" \
4013 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla" \
4014 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bad \
4015 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
4016 1 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]4017 -c "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]4018 -s "SSL - Verification of the message MAC failed"
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]4019
Manuel Pégourié-Gonnardca700b22015-10-20 14:47:00 +0200[diff] [blame]4020# for tests with configs/config-thread.h
Manuel Pégourié-Gonnard12ca6f52015-10-20 15:24:51 +0200[diff] [blame]4021requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE
Manuel Pégourié-Gonnardca700b22015-10-20 14:47:00 +0200[diff] [blame]4022run_test "ECJPAKE: working, DTLS, nolog" \
4023 "$P_SRV dtls=1 ecjpake_pw=bla" \
4024 "$P_CLI dtls=1 ecjpake_pw=bla \
4025 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
4026 0
4027
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]4028# Tests for ciphersuites per version
4029
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]4030requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4031run_test "Per-version suites: SSL3" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4032 "$P_SRV min_version=ssl3 version_suites=TLS-RSA-WITH-3DES-EDE-CBC-SHA,TLS-RSA-WITH-AES-256-CBC-SHA,TLS-RSA-WITH-AES-128-CBC-SHA,TLS-RSA-WITH-AES-128-GCM-SHA256" \
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]4033 "$P_CLI force_version=ssl3" \
4034 0 \
4035 -c "Ciphersuite is TLS-RSA-WITH-3DES-EDE-CBC-SHA"
4036
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4037run_test "Per-version suites: TLS 1.0" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4038 "$P_SRV arc4=1 version_suites=TLS-RSA-WITH-3DES-EDE-CBC-SHA,TLS-RSA-WITH-AES-256-CBC-SHA,TLS-RSA-WITH-AES-128-CBC-SHA,TLS-RSA-WITH-AES-128-GCM-SHA256" \
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]4039 "$P_CLI force_version=tls1 arc4=1" \
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]4040 0 \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4041 -c "Ciphersuite is TLS-RSA-WITH-AES-256-CBC-SHA"
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]4042
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4043run_test "Per-version suites: TLS 1.1" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4044 "$P_SRV version_suites=TLS-RSA-WITH-3DES-EDE-CBC-SHA,TLS-RSA-WITH-AES-256-CBC-SHA,TLS-RSA-WITH-AES-128-CBC-SHA,TLS-RSA-WITH-AES-128-GCM-SHA256" \
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]4045 "$P_CLI force_version=tls1_1" \
4046 0 \
4047 -c "Ciphersuite is TLS-RSA-WITH-AES-128-CBC-SHA"
4048
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4049run_test "Per-version suites: TLS 1.2" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4050 "$P_SRV version_suites=TLS-RSA-WITH-3DES-EDE-CBC-SHA,TLS-RSA-WITH-AES-256-CBC-SHA,TLS-RSA-WITH-AES-128-CBC-SHA,TLS-RSA-WITH-AES-128-GCM-SHA256" \
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]4051 "$P_CLI force_version=tls1_2" \
4052 0 \
4053 -c "Ciphersuite is TLS-RSA-WITH-AES-128-GCM-SHA256"
4054
Manuel Pégourié-Gonnard4cc8c632015-07-23 12:24:03 +0200[diff] [blame]4055# Test for ClientHello without extensions
4056
Manuel Pégourié-Gonnardd55bc202015-08-04 16:22:30 +0200[diff] [blame]4057requires_gnutls
Gilles Peskine5d2511c2017-05-12 13:16:40 +0200[diff] [blame]4058run_test "ClientHello without extensions, SHA-1 allowed" \
Manuel Pégourié-Gonnard4cc8c632015-07-23 12:24:03 +0200[diff] [blame]4059 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4060 "$G_CLI --priority=NORMAL:%NO_EXTENSIONS:%DISABLE_SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard4cc8c632015-07-23 12:24:03 +0200[diff] [blame]4061 0 \
4062 -s "dumping 'client hello extensions' (0 bytes)"
4063
Gilles Peskine5d2511c2017-05-12 13:16:40 +0200[diff] [blame]4064requires_gnutls
4065run_test "ClientHello without extensions, SHA-1 forbidden in certificates on server" \
4066 "$P_SRV debug_level=3 key_file=data_files/server2.key crt_file=data_files/server2.crt allow_sha1=0" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4067 "$G_CLI --priority=NORMAL:%NO_EXTENSIONS:%DISABLE_SAFE_RENEGOTIATION localhost" \
Gilles Peskine5d2511c2017-05-12 13:16:40 +0200[diff] [blame]4068 0 \
4069 -s "dumping 'client hello extensions' (0 bytes)"
4070
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4071# Tests for mbedtls_ssl_get_bytes_avail()
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]4072
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4073run_test "mbedtls_ssl_get_bytes_avail: no extra data" \
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]4074 "$P_SRV" \
4075 "$P_CLI request_size=100" \
4076 0 \
4077 -s "Read from client: 100 bytes read$"
4078
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4079run_test "mbedtls_ssl_get_bytes_avail: extra data" \
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]4080 "$P_SRV" \
4081 "$P_CLI request_size=500" \
4082 0 \
4083 -s "Read from client: 500 bytes read (.*+.*)"
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]4084
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4085# Tests for small client packets
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4086
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]4087requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4088run_test "Small client packet SSLv3 BlockCipher" \
Manuel Pégourié-Gonnard448ea502015-01-12 11:40:14 +0100[diff] [blame]4089 "$P_SRV min_version=ssl3" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4090 "$P_CLI request_size=1 force_version=ssl3 \
4091 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4092 0 \
4093 -s "Read from client: 1 bytes read"
4094
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]4095requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4096run_test "Small client packet SSLv3 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4097 "$P_SRV min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4098 "$P_CLI request_size=1 force_version=ssl3 \
4099 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4100 0 \
4101 -s "Read from client: 1 bytes read"
4102
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4103run_test "Small client packet TLS 1.0 BlockCipher" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4104 "$P_SRV" \
4105 "$P_CLI request_size=1 force_version=tls1 \
4106 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4107 0 \
4108 -s "Read from client: 1 bytes read"
4109
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4110run_test "Small client packet TLS 1.0 BlockCipher, without EtM" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]4111 "$P_SRV" \
4112 "$P_CLI request_size=1 force_version=tls1 etm=0 \
4113 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4114 0 \
4115 -s "Read from client: 1 bytes read"
4116
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4117requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4118run_test "Small client packet TLS 1.0 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4119 "$P_SRV trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4120 "$P_CLI request_size=1 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4121 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4122 0 \
4123 -s "Read from client: 1 bytes read"
4124
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4125requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4126run_test "Small client packet TLS 1.0 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4127 "$P_SRV trunc_hmac=1" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4128 "$P_CLI request_size=1 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4129 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4130 0 \
4131 -s "Read from client: 1 bytes read"
4132
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4133run_test "Small client packet TLS 1.0 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4134 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4135 "$P_CLI request_size=1 force_version=tls1 \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4136 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4137 0 \
4138 -s "Read from client: 1 bytes read"
4139
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4140run_test "Small client packet TLS 1.0 StreamCipher, without EtM" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4141 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4142 "$P_CLI request_size=1 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4143 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4144 0 \
4145 -s "Read from client: 1 bytes read"
4146
4147requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4148run_test "Small client packet TLS 1.0 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4149 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4150 "$P_CLI request_size=1 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4151 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4152 0 \
4153 -s "Read from client: 1 bytes read"
4154
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4155requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4156run_test "Small client packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4157 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4158 "$P_CLI request_size=1 force_version=tls1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
4159 trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4160 0 \
4161 -s "Read from client: 1 bytes read"
4162
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4163run_test "Small client packet TLS 1.1 BlockCipher" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4164 "$P_SRV" \
4165 "$P_CLI request_size=1 force_version=tls1_1 \
4166 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4167 0 \
4168 -s "Read from client: 1 bytes read"
4169
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4170run_test "Small client packet TLS 1.1 BlockCipher, without EtM" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]4171 "$P_SRV" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4172 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4173 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4174 0 \
4175 -s "Read from client: 1 bytes read"
4176
4177requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4178run_test "Small client packet TLS 1.1 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4179 "$P_SRV trunc_hmac=1" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4180 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4181 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4182 0 \
4183 -s "Read from client: 1 bytes read"
4184
4185requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4186run_test "Small client packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4187 "$P_SRV trunc_hmac=1" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4188 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4189 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]4190 0 \
4191 -s "Read from client: 1 bytes read"
4192
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4193run_test "Small client packet TLS 1.1 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4194 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4195 "$P_CLI request_size=1 force_version=tls1_1 \
4196 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4197 0 \
4198 -s "Read from client: 1 bytes read"
4199
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4200run_test "Small client packet TLS 1.1 StreamCipher, without EtM" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4201 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4202 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4203 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4204 0 \
4205 -s "Read from client: 1 bytes read"
4206
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4207requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4208run_test "Small client packet TLS 1.1 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4209 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4210 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4211 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4212 0 \
4213 -s "Read from client: 1 bytes read"
4214
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4215requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4216run_test "Small client packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4217 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4218 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4219 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4220 0 \
4221 -s "Read from client: 1 bytes read"
4222
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4223run_test "Small client packet TLS 1.2 BlockCipher" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4224 "$P_SRV" \
4225 "$P_CLI request_size=1 force_version=tls1_2 \
4226 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4227 0 \
4228 -s "Read from client: 1 bytes read"
4229
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4230run_test "Small client packet TLS 1.2 BlockCipher, without EtM" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]4231 "$P_SRV" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4232 "$P_CLI request_size=1 force_version=tls1_2 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4233 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]4234 0 \
4235 -s "Read from client: 1 bytes read"
4236
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4237run_test "Small client packet TLS 1.2 BlockCipher larger MAC" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4238 "$P_SRV" \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]4239 "$P_CLI request_size=1 force_version=tls1_2 \
4240 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4241 0 \
4242 -s "Read from client: 1 bytes read"
4243
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4244requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4245run_test "Small client packet TLS 1.2 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4246 "$P_SRV trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4247 "$P_CLI request_size=1 force_version=tls1_2 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4248 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4249 0 \
4250 -s "Read from client: 1 bytes read"
4251
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4252requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4253run_test "Small client packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4254 "$P_SRV trunc_hmac=1" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4255 "$P_CLI request_size=1 force_version=tls1_2 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4256 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4257 0 \
4258 -s "Read from client: 1 bytes read"
4259
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4260run_test "Small client packet TLS 1.2 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4261 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4262 "$P_CLI request_size=1 force_version=tls1_2 \
4263 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4264 0 \
4265 -s "Read from client: 1 bytes read"
4266
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4267run_test "Small client packet TLS 1.2 StreamCipher, without EtM" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4268 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4269 "$P_CLI request_size=1 force_version=tls1_2 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4270 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4271 0 \
4272 -s "Read from client: 1 bytes read"
4273
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4274requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4275run_test "Small client packet TLS 1.2 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4276 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4277 "$P_CLI request_size=1 force_version=tls1_2 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4278 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4279 0 \
4280 -s "Read from client: 1 bytes read"
4281
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4282requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4283run_test "Small client packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4284 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]4285 "$P_CLI request_size=1 force_version=tls1_2 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4286 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4287 0 \
4288 -s "Read from client: 1 bytes read"
4289
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4290run_test "Small client packet TLS 1.2 AEAD" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4291 "$P_SRV" \
4292 "$P_CLI request_size=1 force_version=tls1_2 \
4293 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
4294 0 \
4295 -s "Read from client: 1 bytes read"
4296
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4297run_test "Small client packet TLS 1.2 AEAD shorter tag" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]4298 "$P_SRV" \
4299 "$P_CLI request_size=1 force_version=tls1_2 \
4300 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
4301 0 \
4302 -s "Read from client: 1 bytes read"
4303
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4304# Tests for small client packets in DTLS
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4305
4306requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4307run_test "Small client packet DTLS 1.0" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4308 "$P_SRV dtls=1 force_version=dtls1" \
4309 "$P_CLI dtls=1 request_size=1 \
4310 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4311 0 \
4312 -s "Read from client: 1 bytes read"
4313
4314requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4315run_test "Small client packet DTLS 1.0, without EtM" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4316 "$P_SRV dtls=1 force_version=dtls1 etm=0" \
4317 "$P_CLI dtls=1 request_size=1 \
4318 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4319 0 \
4320 -s "Read from client: 1 bytes read"
4321
4322requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4323requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4324run_test "Small client packet DTLS 1.0, truncated hmac" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4325 "$P_SRV dtls=1 force_version=dtls1 trunc_hmac=1" \
4326 "$P_CLI dtls=1 request_size=1 trunc_hmac=1 \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4327 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4328 0 \
4329 -s "Read from client: 1 bytes read"
4330
4331requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4332requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4333run_test "Small client packet DTLS 1.0, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4334 "$P_SRV dtls=1 force_version=dtls1 trunc_hmac=1 etm=0" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4335 "$P_CLI dtls=1 request_size=1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4336 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4337 0 \
4338 -s "Read from client: 1 bytes read"
4339
4340requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4341run_test "Small client packet DTLS 1.2" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4342 "$P_SRV dtls=1 force_version=dtls1_2" \
4343 "$P_CLI dtls=1 request_size=1 \
4344 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4345 0 \
4346 -s "Read from client: 1 bytes read"
4347
4348requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4349run_test "Small client packet DTLS 1.2, without EtM" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4350 "$P_SRV dtls=1 force_version=dtls1_2 etm=0" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4351 "$P_CLI dtls=1 request_size=1 \
4352 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4353 0 \
4354 -s "Read from client: 1 bytes read"
4355
4356requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4357requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4358run_test "Small client packet DTLS 1.2, truncated hmac" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4359 "$P_SRV dtls=1 force_version=dtls1_2 trunc_hmac=1" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4360 "$P_CLI dtls=1 request_size=1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4361 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4362 0 \
4363 -s "Read from client: 1 bytes read"
4364
4365requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4366requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4367run_test "Small client packet DTLS 1.2, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4368 "$P_SRV dtls=1 force_version=dtls1_2 trunc_hmac=1 etm=0" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4369 "$P_CLI dtls=1 request_size=1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4370 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]4371 0 \
4372 -s "Read from client: 1 bytes read"
4373
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4374# Tests for small server packets
4375
4376requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
4377run_test "Small server packet SSLv3 BlockCipher" \
4378 "$P_SRV response_size=1 min_version=ssl3" \
4379 "$P_CLI force_version=ssl3 \
4380 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4381 0 \
4382 -c "Read from server: 1 bytes read"
4383
4384requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
4385run_test "Small server packet SSLv3 StreamCipher" \
4386 "$P_SRV response_size=1 min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4387 "$P_CLI force_version=ssl3 \
4388 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4389 0 \
4390 -c "Read from server: 1 bytes read"
4391
4392run_test "Small server packet TLS 1.0 BlockCipher" \
4393 "$P_SRV response_size=1" \
4394 "$P_CLI force_version=tls1 \
4395 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4396 0 \
4397 -c "Read from server: 1 bytes read"
4398
4399run_test "Small server packet TLS 1.0 BlockCipher, without EtM" \
4400 "$P_SRV response_size=1" \
4401 "$P_CLI force_version=tls1 etm=0 \
4402 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4403 0 \
4404 -c "Read from server: 1 bytes read"
4405
4406requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4407run_test "Small server packet TLS 1.0 BlockCipher, truncated MAC" \
4408 "$P_SRV response_size=1 trunc_hmac=1" \
4409 "$P_CLI force_version=tls1 \
4410 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
4411 0 \
4412 -c "Read from server: 1 bytes read"
4413
4414requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4415run_test "Small server packet TLS 1.0 BlockCipher, without EtM, truncated MAC" \
4416 "$P_SRV response_size=1 trunc_hmac=1" \
4417 "$P_CLI force_version=tls1 \
4418 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
4419 0 \
4420 -c "Read from server: 1 bytes read"
4421
4422run_test "Small server packet TLS 1.0 StreamCipher" \
4423 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4424 "$P_CLI force_version=tls1 \
4425 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4426 0 \
4427 -c "Read from server: 1 bytes read"
4428
4429run_test "Small server packet TLS 1.0 StreamCipher, without EtM" \
4430 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4431 "$P_CLI force_version=tls1 \
4432 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
4433 0 \
4434 -c "Read from server: 1 bytes read"
4435
4436requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4437run_test "Small server packet TLS 1.0 StreamCipher, truncated MAC" \
4438 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4439 "$P_CLI force_version=tls1 \
4440 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4441 0 \
4442 -c "Read from server: 1 bytes read"
4443
4444requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4445run_test "Small server packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
4446 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4447 "$P_CLI force_version=tls1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
4448 trunc_hmac=1 etm=0" \
4449 0 \
4450 -c "Read from server: 1 bytes read"
4451
4452run_test "Small server packet TLS 1.1 BlockCipher" \
4453 "$P_SRV response_size=1" \
4454 "$P_CLI force_version=tls1_1 \
4455 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4456 0 \
4457 -c "Read from server: 1 bytes read"
4458
4459run_test "Small server packet TLS 1.1 BlockCipher, without EtM" \
4460 "$P_SRV response_size=1" \
4461 "$P_CLI force_version=tls1_1 \
4462 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
4463 0 \
4464 -c "Read from server: 1 bytes read"
4465
4466requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4467run_test "Small server packet TLS 1.1 BlockCipher, truncated MAC" \
4468 "$P_SRV response_size=1 trunc_hmac=1" \
4469 "$P_CLI force_version=tls1_1 \
4470 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
4471 0 \
4472 -c "Read from server: 1 bytes read"
4473
4474requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4475run_test "Small server packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
4476 "$P_SRV response_size=1 trunc_hmac=1" \
4477 "$P_CLI force_version=tls1_1 \
4478 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
4479 0 \
4480 -c "Read from server: 1 bytes read"
4481
4482run_test "Small server packet TLS 1.1 StreamCipher" \
4483 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4484 "$P_CLI force_version=tls1_1 \
4485 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4486 0 \
4487 -c "Read from server: 1 bytes read"
4488
4489run_test "Small server packet TLS 1.1 StreamCipher, without EtM" \
4490 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4491 "$P_CLI force_version=tls1_1 \
4492 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
4493 0 \
4494 -c "Read from server: 1 bytes read"
4495
4496requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4497run_test "Small server packet TLS 1.1 StreamCipher, truncated MAC" \
4498 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4499 "$P_CLI force_version=tls1_1 \
4500 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4501 0 \
4502 -c "Read from server: 1 bytes read"
4503
4504requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4505run_test "Small server packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
4506 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4507 "$P_CLI force_version=tls1_1 \
4508 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
4509 0 \
4510 -c "Read from server: 1 bytes read"
4511
4512run_test "Small server packet TLS 1.2 BlockCipher" \
4513 "$P_SRV response_size=1" \
4514 "$P_CLI force_version=tls1_2 \
4515 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4516 0 \
4517 -c "Read from server: 1 bytes read"
4518
4519run_test "Small server packet TLS 1.2 BlockCipher, without EtM" \
4520 "$P_SRV response_size=1" \
4521 "$P_CLI force_version=tls1_2 \
4522 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
4523 0 \
4524 -c "Read from server: 1 bytes read"
4525
4526run_test "Small server packet TLS 1.2 BlockCipher larger MAC" \
4527 "$P_SRV response_size=1" \
4528 "$P_CLI force_version=tls1_2 \
4529 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
4530 0 \
4531 -c "Read from server: 1 bytes read"
4532
4533requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4534run_test "Small server packet TLS 1.2 BlockCipher, truncated MAC" \
4535 "$P_SRV response_size=1 trunc_hmac=1" \
4536 "$P_CLI force_version=tls1_2 \
4537 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
4538 0 \
4539 -c "Read from server: 1 bytes read"
4540
4541requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4542run_test "Small server packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
4543 "$P_SRV response_size=1 trunc_hmac=1" \
4544 "$P_CLI force_version=tls1_2 \
4545 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
4546 0 \
4547 -c "Read from server: 1 bytes read"
4548
4549run_test "Small server packet TLS 1.2 StreamCipher" \
4550 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4551 "$P_CLI force_version=tls1_2 \
4552 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4553 0 \
4554 -c "Read from server: 1 bytes read"
4555
4556run_test "Small server packet TLS 1.2 StreamCipher, without EtM" \
4557 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4558 "$P_CLI force_version=tls1_2 \
4559 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
4560 0 \
4561 -c "Read from server: 1 bytes read"
4562
4563requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4564run_test "Small server packet TLS 1.2 StreamCipher, truncated MAC" \
4565 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4566 "$P_CLI force_version=tls1_2 \
4567 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4568 0 \
4569 -c "Read from server: 1 bytes read"
4570
4571requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4572run_test "Small server packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
4573 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4574 "$P_CLI force_version=tls1_2 \
4575 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
4576 0 \
4577 -c "Read from server: 1 bytes read"
4578
4579run_test "Small server packet TLS 1.2 AEAD" \
4580 "$P_SRV response_size=1" \
4581 "$P_CLI force_version=tls1_2 \
4582 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
4583 0 \
4584 -c "Read from server: 1 bytes read"
4585
4586run_test "Small server packet TLS 1.2 AEAD shorter tag" \
4587 "$P_SRV response_size=1" \
4588 "$P_CLI force_version=tls1_2 \
4589 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
4590 0 \
4591 -c "Read from server: 1 bytes read"
4592
4593# Tests for small server packets in DTLS
4594
4595requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4596run_test "Small server packet DTLS 1.0" \
4597 "$P_SRV dtls=1 response_size=1 force_version=dtls1" \
4598 "$P_CLI dtls=1 \
4599 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4600 0 \
4601 -c "Read from server: 1 bytes read"
4602
4603requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4604run_test "Small server packet DTLS 1.0, without EtM" \
4605 "$P_SRV dtls=1 response_size=1 force_version=dtls1 etm=0" \
4606 "$P_CLI dtls=1 \
4607 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4608 0 \
4609 -c "Read from server: 1 bytes read"
4610
4611requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4612requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4613run_test "Small server packet DTLS 1.0, truncated hmac" \
4614 "$P_SRV dtls=1 response_size=1 force_version=dtls1 trunc_hmac=1" \
4615 "$P_CLI dtls=1 trunc_hmac=1 \
4616 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4617 0 \
4618 -c "Read from server: 1 bytes read"
4619
4620requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4621requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4622run_test "Small server packet DTLS 1.0, without EtM, truncated MAC" \
4623 "$P_SRV dtls=1 response_size=1 force_version=dtls1 trunc_hmac=1 etm=0" \
4624 "$P_CLI dtls=1 \
4625 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
4626 0 \
4627 -c "Read from server: 1 bytes read"
4628
4629requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4630run_test "Small server packet DTLS 1.2" \
4631 "$P_SRV dtls=1 response_size=1 force_version=dtls1_2" \
4632 "$P_CLI dtls=1 \
4633 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4634 0 \
4635 -c "Read from server: 1 bytes read"
4636
4637requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4638run_test "Small server packet DTLS 1.2, without EtM" \
4639 "$P_SRV dtls=1 response_size=1 force_version=dtls1_2 etm=0" \
4640 "$P_CLI dtls=1 \
4641 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4642 0 \
4643 -c "Read from server: 1 bytes read"
4644
4645requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4646requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4647run_test "Small server packet DTLS 1.2, truncated hmac" \
4648 "$P_SRV dtls=1 response_size=1 force_version=dtls1_2 trunc_hmac=1" \
4649 "$P_CLI dtls=1 \
4650 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
4651 0 \
4652 -c "Read from server: 1 bytes read"
4653
4654requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
4655requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4656run_test "Small server packet DTLS 1.2, without EtM, truncated MAC" \
4657 "$P_SRV dtls=1 response_size=1 force_version=dtls1_2 trunc_hmac=1 etm=0" \
4658 "$P_CLI dtls=1 \
4659 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
4660 0 \
4661 -c "Read from server: 1 bytes read"
4662
Janos Follath00efff72016-05-06 13:48:23 +0100[diff] [blame]4663# A test for extensions in SSLv3
4664
4665requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
4666run_test "SSLv3 with extensions, server side" \
4667 "$P_SRV min_version=ssl3 debug_level=3" \
4668 "$P_CLI force_version=ssl3 tickets=1 max_frag_len=4096 alpn=abc,1234" \
4669 0 \
4670 -S "dumping 'client hello extensions'" \
4671 -S "server hello, total extension length:"
4672
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4673# Test for large client packets
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4674
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4675# How many fragments do we expect to write $1 bytes?
4676fragments_for_write() {
4677 echo "$(( ( $1 + $MAX_OUT_LEN - 1 ) / $MAX_OUT_LEN ))"
4678}
4679
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]4680requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4681run_test "Large client packet SSLv3 BlockCipher" \
Manuel Pégourié-Gonnard448ea502015-01-12 11:40:14 +0100[diff] [blame]4682 "$P_SRV min_version=ssl3" \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]4683 "$P_CLI request_size=16384 force_version=ssl3 recsplit=0 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4684 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4685 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4686 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4687 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4688
Janos Follathe2681a42016-03-07 15:57:05 +0000[diff] [blame]4689requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4690run_test "Large client packet SSLv3 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4691 "$P_SRV min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4692 "$P_CLI request_size=16384 force_version=ssl3 \
4693 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4694 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4695 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4696 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4697
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4698run_test "Large client packet TLS 1.0 BlockCipher" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4699 "$P_SRV" \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]4700 "$P_CLI request_size=16384 force_version=tls1 recsplit=0 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4701 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4702 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4703 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4704 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4705
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4706run_test "Large client packet TLS 1.0 BlockCipher, without EtM" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4707 "$P_SRV" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4708 "$P_CLI request_size=16384 force_version=tls1 etm=0 recsplit=0 \
4709 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4710 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4711 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4712
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4713requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4714run_test "Large client packet TLS 1.0 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4715 "$P_SRV trunc_hmac=1" \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]4716 "$P_CLI request_size=16384 force_version=tls1 recsplit=0 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4717 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4718 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4719 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4720 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4721
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4722requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4723run_test "Large client packet TLS 1.0 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4724 "$P_SRV trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4725 "$P_CLI request_size=16384 force_version=tls1 etm=0 recsplit=0 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4726 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4727 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4728 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4729
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4730run_test "Large client packet TLS 1.0 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4731 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4732 "$P_CLI request_size=16384 force_version=tls1 \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4733 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4734 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4735 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4736
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4737run_test "Large client packet TLS 1.0 StreamCipher, without EtM" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4738 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4739 "$P_CLI request_size=16384 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4740 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4741 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4742 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4743
4744requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4745run_test "Large client packet TLS 1.0 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4746 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4747 "$P_CLI request_size=16384 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4748 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4749 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4750 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4751
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4752requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4753run_test "Large client packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4754 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4755 "$P_CLI request_size=16384 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4756 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4757 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4758 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4759 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4760
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4761run_test "Large client packet TLS 1.1 BlockCipher" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4762 "$P_SRV" \
4763 "$P_CLI request_size=16384 force_version=tls1_1 \
4764 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4765 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4766 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4767 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4768
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4769run_test "Large client packet TLS 1.1 BlockCipher, without EtM" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4770 "$P_SRV" \
4771 "$P_CLI request_size=16384 force_version=tls1_1 etm=0 \
4772 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4773 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4774 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4775
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4776requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4777run_test "Large client packet TLS 1.1 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4778 "$P_SRV trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4779 "$P_CLI request_size=16384 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4780 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4781 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4782 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4783
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4784requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4785run_test "Large client packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4786 "$P_SRV trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4787 "$P_CLI request_size=16384 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4788 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4789 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4790 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4791
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4792run_test "Large client packet TLS 1.1 StreamCipher" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4793 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4794 "$P_CLI request_size=16384 force_version=tls1_1 \
4795 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4796 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4797 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4798 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4799
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4800run_test "Large client packet TLS 1.1 StreamCipher, without EtM" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4801 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4802 "$P_CLI request_size=16384 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4803 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4804 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4805 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4806 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4807
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4808requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4809run_test "Large client packet TLS 1.1 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4810 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4811 "$P_CLI request_size=16384 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4812 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4813 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4814 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4815
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4816requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4817run_test "Large client packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4818 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4819 "$P_CLI request_size=16384 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4820 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4821 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4822 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4823 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4824
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4825run_test "Large client packet TLS 1.2 BlockCipher" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4826 "$P_SRV" \
4827 "$P_CLI request_size=16384 force_version=tls1_2 \
4828 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4829 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4830 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4831 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4832
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4833run_test "Large client packet TLS 1.2 BlockCipher, without EtM" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4834 "$P_SRV" \
4835 "$P_CLI request_size=16384 force_version=tls1_2 etm=0 \
4836 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4837 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4838 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4839
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4840run_test "Large client packet TLS 1.2 BlockCipher larger MAC" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4841 "$P_SRV" \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]4842 "$P_CLI request_size=16384 force_version=tls1_2 \
4843 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4844 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4845 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4846 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4847
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4848requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4849run_test "Large client packet TLS 1.2 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4850 "$P_SRV trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4851 "$P_CLI request_size=16384 force_version=tls1_2 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4852 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4853 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4854 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4855
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4856requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4857run_test "Large client packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4858 "$P_SRV trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4859 "$P_CLI request_size=16384 force_version=tls1_2 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4860 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4861 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4862 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4863 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4864
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4865run_test "Large client packet TLS 1.2 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4866 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4867 "$P_CLI request_size=16384 force_version=tls1_2 \
4868 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4869 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4870 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4871 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4872
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4873run_test "Large client packet TLS 1.2 StreamCipher, without EtM" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]4874 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4875 "$P_CLI request_size=16384 force_version=tls1_2 \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4876 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
4877 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4878 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4879
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]4880requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4881run_test "Large client packet TLS 1.2 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4882 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4883 "$P_CLI request_size=16384 force_version=tls1_2 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4884 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4885 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4886 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4887
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4888requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4889run_test "Large client packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4890 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]4891 "$P_CLI request_size=16384 force_version=tls1_2 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]4892 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4893 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4894 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4895 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4896
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4897run_test "Large client packet TLS 1.2 AEAD" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4898 "$P_SRV" \
4899 "$P_CLI request_size=16384 force_version=tls1_2 \
4900 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
4901 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4902 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4903 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4904
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4905run_test "Large client packet TLS 1.2 AEAD shorter tag" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4906 "$P_SRV" \
4907 "$P_CLI request_size=16384 force_version=tls1_2 \
4908 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
4909 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4910 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
4911 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]4912
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4913# Test for large server packets
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4914requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
4915run_test "Large server packet SSLv3 StreamCipher" \
4916 "$P_SRV response_size=16384 min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4917 "$P_CLI force_version=ssl3 \
4918 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4919 0 \
4920 -c "Read from server: 16384 bytes read"
4921
Andrzej Kurek6a4f2242018-08-27 08:00:13 -0400[diff] [blame]4922# Checking next 4 tests logs for 1n-1 split against BEAST too
4923requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
4924run_test "Large server packet SSLv3 BlockCipher" \
4925 "$P_SRV response_size=16384 min_version=ssl3" \
4926 "$P_CLI force_version=ssl3 recsplit=0 \
4927 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4928 0 \
4929 -c "Read from server: 1 bytes read"\
4930 -c "16383 bytes read"\
4931 -C "Read from server: 16384 bytes read"
4932
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4933run_test "Large server packet TLS 1.0 BlockCipher" \
4934 "$P_SRV response_size=16384" \
4935 "$P_CLI force_version=tls1 recsplit=0 \
4936 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4937 0 \
4938 -c "Read from server: 1 bytes read"\
4939 -c "16383 bytes read"\
4940 -C "Read from server: 16384 bytes read"
4941
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4942run_test "Large server packet TLS 1.0 BlockCipher, without EtM" \
4943 "$P_SRV response_size=16384" \
4944 "$P_CLI force_version=tls1 etm=0 recsplit=0 \
4945 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
4946 0 \
4947 -c "Read from server: 1 bytes read"\
4948 -c "16383 bytes read"\
4949 -C "Read from server: 16384 bytes read"
4950
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]4951requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4952run_test "Large server packet TLS 1.0 BlockCipher truncated MAC" \
4953 "$P_SRV response_size=16384" \
4954 "$P_CLI force_version=tls1 recsplit=0 \
4955 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA \
4956 trunc_hmac=1" \
4957 0 \
4958 -c "Read from server: 1 bytes read"\
4959 -c "16383 bytes read"\
4960 -C "Read from server: 16384 bytes read"
4961
4962requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4963run_test "Large server packet TLS 1.0 StreamCipher truncated MAC" \
4964 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4965 "$P_CLI force_version=tls1 \
4966 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
4967 trunc_hmac=1" \
4968 0 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]4969 -s "16384 bytes written in 1 fragments" \
4970 -c "Read from server: 16384 bytes read"
4971
4972run_test "Large server packet TLS 1.0 StreamCipher" \
4973 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4974 "$P_CLI force_version=tls1 \
4975 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4976 0 \
4977 -s "16384 bytes written in 1 fragments" \
4978 -c "Read from server: 16384 bytes read"
4979
4980run_test "Large server packet TLS 1.0 StreamCipher, without EtM" \
4981 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
4982 "$P_CLI force_version=tls1 \
4983 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
4984 0 \
4985 -s "16384 bytes written in 1 fragments" \
4986 -c "Read from server: 16384 bytes read"
4987
4988requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4989run_test "Large server packet TLS 1.0 StreamCipher, truncated MAC" \
4990 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4991 "$P_CLI force_version=tls1 \
4992 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
4993 0 \
4994 -s "16384 bytes written in 1 fragments" \
4995 -c "Read from server: 16384 bytes read"
4996
4997requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
4998run_test "Large server packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
4999 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
5000 "$P_CLI force_version=tls1 \
5001 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
5002 0 \
5003 -s "16384 bytes written in 1 fragments" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]5004 -c "Read from server: 16384 bytes read"
5005
5006run_test "Large server packet TLS 1.1 BlockCipher" \
5007 "$P_SRV response_size=16384" \
5008 "$P_CLI force_version=tls1_1 \
5009 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
5010 0 \
5011 -c "Read from server: 16384 bytes read"
5012
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]5013run_test "Large server packet TLS 1.1 BlockCipher, without EtM" \
5014 "$P_SRV response_size=16384" \
5015 "$P_CLI force_version=tls1_1 etm=0 \
5016 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]5017 0 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]5018 -s "16384 bytes written in 1 fragments" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]5019 -c "Read from server: 16384 bytes read"
5020
5021requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
5022run_test "Large server packet TLS 1.1 BlockCipher truncated MAC" \
5023 "$P_SRV response_size=16384" \
5024 "$P_CLI force_version=tls1_1 \
5025 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA \
5026 trunc_hmac=1" \
5027 0 \
5028 -c "Read from server: 16384 bytes read"
5029
5030requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]5031run_test "Large server packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
5032 "$P_SRV response_size=16384 trunc_hmac=1" \
5033 "$P_CLI force_version=tls1_1 \
5034 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
5035 0 \
5036 -s "16384 bytes written in 1 fragments" \
5037 -c "Read from server: 16384 bytes read"
5038
5039run_test "Large server packet TLS 1.1 StreamCipher" \
5040 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
5041 "$P_CLI force_version=tls1_1 \
5042 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
5043 0 \
5044 -c "Read from server: 16384 bytes read"
5045
5046run_test "Large server packet TLS 1.1 StreamCipher, without EtM" \
5047 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
5048 "$P_CLI force_version=tls1_1 \
5049 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
5050 0 \
5051 -s "16384 bytes written in 1 fragments" \
5052 -c "Read from server: 16384 bytes read"
5053
5054requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]5055run_test "Large server packet TLS 1.1 StreamCipher truncated MAC" \
5056 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
5057 "$P_CLI force_version=tls1_1 \
5058 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
5059 trunc_hmac=1" \
5060 0 \
5061 -c "Read from server: 16384 bytes read"
5062
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]5063run_test "Large server packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
5064 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
5065 "$P_CLI force_version=tls1_1 \
5066 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
5067 0 \
5068 -s "16384 bytes written in 1 fragments" \
5069 -c "Read from server: 16384 bytes read"
5070
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]5071run_test "Large server packet TLS 1.2 BlockCipher" \
5072 "$P_SRV response_size=16384" \
5073 "$P_CLI force_version=tls1_2 \
5074 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
5075 0 \
5076 -c "Read from server: 16384 bytes read"
5077
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]5078run_test "Large server packet TLS 1.2 BlockCipher, without EtM" \
5079 "$P_SRV response_size=16384" \
5080 "$P_CLI force_version=tls1_2 etm=0 \
5081 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
5082 0 \
5083 -s "16384 bytes written in 1 fragments" \
5084 -c "Read from server: 16384 bytes read"
5085
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]5086run_test "Large server packet TLS 1.2 BlockCipher larger MAC" \
5087 "$P_SRV response_size=16384" \
5088 "$P_CLI force_version=tls1_2 \
5089 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
5090 0 \
5091 -c "Read from server: 16384 bytes read"
5092
5093requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
5094run_test "Large server packet TLS 1.2 BlockCipher truncated MAC" \
5095 "$P_SRV response_size=16384" \
5096 "$P_CLI force_version=tls1_2 \
5097 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA \
5098 trunc_hmac=1" \
5099 0 \
5100 -c "Read from server: 16384 bytes read"
5101
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]5102run_test "Large server packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
5103 "$P_SRV response_size=16384 trunc_hmac=1" \
5104 "$P_CLI force_version=tls1_2 \
5105 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
5106 0 \
5107 -s "16384 bytes written in 1 fragments" \
5108 -c "Read from server: 16384 bytes read"
5109
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]5110run_test "Large server packet TLS 1.2 StreamCipher" \
5111 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
5112 "$P_CLI force_version=tls1_2 \
5113 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
5114 0 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]5115 -s "16384 bytes written in 1 fragments" \
5116 -c "Read from server: 16384 bytes read"
5117
5118run_test "Large server packet TLS 1.2 StreamCipher, without EtM" \
5119 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
5120 "$P_CLI force_version=tls1_2 \
5121 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
5122 0 \
5123 -s "16384 bytes written in 1 fragments" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]5124 -c "Read from server: 16384 bytes read"
5125
5126requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
5127run_test "Large server packet TLS 1.2 StreamCipher truncated MAC" \
5128 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
5129 "$P_CLI force_version=tls1_2 \
5130 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
5131 trunc_hmac=1" \
5132 0 \
5133 -c "Read from server: 16384 bytes read"
5134
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]5135requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
5136run_test "Large server packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
5137 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
5138 "$P_CLI force_version=tls1_2 \
5139 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
5140 0 \
5141 -s "16384 bytes written in 1 fragments" \
5142 -c "Read from server: 16384 bytes read"
5143
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]5144run_test "Large server packet TLS 1.2 AEAD" \
5145 "$P_SRV response_size=16384" \
5146 "$P_CLI force_version=tls1_2 \
5147 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
5148 0 \
5149 -c "Read from server: 16384 bytes read"
5150
5151run_test "Large server packet TLS 1.2 AEAD shorter tag" \
5152 "$P_SRV response_size=16384" \
5153 "$P_CLI force_version=tls1_2 \
5154 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
5155 0 \
5156 -c "Read from server: 16384 bytes read"
5157
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5158# Tests for restartable ECC
5159
5160requires_config_enabled MBEDTLS_ECP_RESTARTABLE
5161run_test "EC restart: TLS, default" \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]5162 "$P_SRV auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5163 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]5164 key_file=data_files/server5.key crt_file=data_files/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5165 debug_level=1" \
5166 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]5167 -C "x509_verify_cert.*4b00" \
5168 -C "mbedtls_pk_verify.*4b00" \
5169 -C "mbedtls_ecdh_make_public.*4b00" \
5170 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5171
5172requires_config_enabled MBEDTLS_ECP_RESTARTABLE
5173run_test "EC restart: TLS, max_ops=0" \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]5174 "$P_SRV auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5175 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]5176 key_file=data_files/server5.key crt_file=data_files/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5177 debug_level=1 ec_max_ops=0" \
5178 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]5179 -C "x509_verify_cert.*4b00" \
5180 -C "mbedtls_pk_verify.*4b00" \
5181 -C "mbedtls_ecdh_make_public.*4b00" \
5182 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5183
5184requires_config_enabled MBEDTLS_ECP_RESTARTABLE
5185run_test "EC restart: TLS, max_ops=65535" \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]5186 "$P_SRV auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5187 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]5188 key_file=data_files/server5.key crt_file=data_files/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5189 debug_level=1 ec_max_ops=65535" \
5190 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]5191 -C "x509_verify_cert.*4b00" \
5192 -C "mbedtls_pk_verify.*4b00" \
5193 -C "mbedtls_ecdh_make_public.*4b00" \
5194 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5195
5196requires_config_enabled MBEDTLS_ECP_RESTARTABLE
5197run_test "EC restart: TLS, max_ops=1000" \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]5198 "$P_SRV auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5199 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]5200 key_file=data_files/server5.key crt_file=data_files/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5201 debug_level=1 ec_max_ops=1000" \
5202 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]5203 -c "x509_verify_cert.*4b00" \
5204 -c "mbedtls_pk_verify.*4b00" \
5205 -c "mbedtls_ecdh_make_public.*4b00" \
5206 -c "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5207
5208requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]5209run_test "EC restart: TLS, max_ops=1000, badsign" \
5210 "$P_SRV auth_mode=required \
5211 crt_file=data_files/server5-badsign.crt \
5212 key_file=data_files/server5.key" \
5213 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
5214 key_file=data_files/server5.key crt_file=data_files/server5.crt \
5215 debug_level=1 ec_max_ops=1000" \
5216 1 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]5217 -c "x509_verify_cert.*4b00" \
5218 -C "mbedtls_pk_verify.*4b00" \
5219 -C "mbedtls_ecdh_make_public.*4b00" \
5220 -C "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]5221 -c "! The certificate is not correctly signed by the trusted CA" \
5222 -c "! mbedtls_ssl_handshake returned" \
5223 -c "X509 - Certificate verification failed"
5224
5225requires_config_enabled MBEDTLS_ECP_RESTARTABLE
5226run_test "EC restart: TLS, max_ops=1000, auth_mode=optional badsign" \
5227 "$P_SRV auth_mode=required \
5228 crt_file=data_files/server5-badsign.crt \
5229 key_file=data_files/server5.key" \
5230 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
5231 key_file=data_files/server5.key crt_file=data_files/server5.crt \
5232 debug_level=1 ec_max_ops=1000 auth_mode=optional" \
5233 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]5234 -c "x509_verify_cert.*4b00" \
5235 -c "mbedtls_pk_verify.*4b00" \
5236 -c "mbedtls_ecdh_make_public.*4b00" \
5237 -c "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]5238 -c "! The certificate is not correctly signed by the trusted CA" \
5239 -C "! mbedtls_ssl_handshake returned" \
5240 -C "X509 - Certificate verification failed"
5241
5242requires_config_enabled MBEDTLS_ECP_RESTARTABLE
5243run_test "EC restart: TLS, max_ops=1000, auth_mode=none badsign" \
5244 "$P_SRV auth_mode=required \
5245 crt_file=data_files/server5-badsign.crt \
5246 key_file=data_files/server5.key" \
5247 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
5248 key_file=data_files/server5.key crt_file=data_files/server5.crt \
5249 debug_level=1 ec_max_ops=1000 auth_mode=none" \
5250 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]5251 -C "x509_verify_cert.*4b00" \
5252 -c "mbedtls_pk_verify.*4b00" \
5253 -c "mbedtls_ecdh_make_public.*4b00" \
5254 -c "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]5255 -C "! The certificate is not correctly signed by the trusted CA" \
5256 -C "! mbedtls_ssl_handshake returned" \
5257 -C "X509 - Certificate verification failed"
5258
5259requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5260run_test "EC restart: DTLS, max_ops=1000" \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]5261 "$P_SRV auth_mode=required dtls=1" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5262 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]5263 key_file=data_files/server5.key crt_file=data_files/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5264 dtls=1 debug_level=1 ec_max_ops=1000" \
5265 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]5266 -c "x509_verify_cert.*4b00" \
5267 -c "mbedtls_pk_verify.*4b00" \
5268 -c "mbedtls_ecdh_make_public.*4b00" \
5269 -c "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]5270
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]5271requires_config_enabled MBEDTLS_ECP_RESTARTABLE
5272run_test "EC restart: TLS, max_ops=1000 no client auth" \
5273 "$P_SRV" \
5274 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
5275 debug_level=1 ec_max_ops=1000" \
5276 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]5277 -c "x509_verify_cert.*4b00" \
5278 -c "mbedtls_pk_verify.*4b00" \
5279 -c "mbedtls_ecdh_make_public.*4b00" \
5280 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]5281
5282requires_config_enabled MBEDTLS_ECP_RESTARTABLE
5283run_test "EC restart: TLS, max_ops=1000, ECDHE-PSK" \
5284 "$P_SRV psk=abc123" \
5285 "$P_CLI force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA256 \
5286 psk=abc123 debug_level=1 ec_max_ops=1000" \
5287 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]5288 -C "x509_verify_cert.*4b00" \
5289 -C "mbedtls_pk_verify.*4b00" \
5290 -C "mbedtls_ecdh_make_public.*4b00" \
5291 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]5292
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5293# Tests of asynchronous private key support in SSL
5294
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5295requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5296run_test "SSL async private: sign, delay=0" \
5297 "$P_SRV \
5298 async_operations=s async_private_delay1=0 async_private_delay2=0" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5299 "$P_CLI" \
5300 0 \
5301 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5302 -s "Async resume (slot [0-9]): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5303
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5304requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5305run_test "SSL async private: sign, delay=1" \
5306 "$P_SRV \
5307 async_operations=s async_private_delay1=1 async_private_delay2=1" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5308 "$P_CLI" \
5309 0 \
5310 -s "Async sign callback: using key slot " \
5311 -s "Async resume (slot [0-9]): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5312 -s "Async resume (slot [0-9]): sign done, status=0"
5313
Gilles Peskine12d0cc12018-04-26 15:06:56 +0200[diff] [blame]5314requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
5315run_test "SSL async private: sign, delay=2" \
5316 "$P_SRV \
5317 async_operations=s async_private_delay1=2 async_private_delay2=2" \
5318 "$P_CLI" \
5319 0 \
5320 -s "Async sign callback: using key slot " \
5321 -U "Async sign callback: using key slot " \
5322 -s "Async resume (slot [0-9]): call 1 more times." \
5323 -s "Async resume (slot [0-9]): call 0 more times." \
5324 -s "Async resume (slot [0-9]): sign done, status=0"
5325
Gilles Peskined3268832018-04-26 06:23:59 +0200[diff] [blame]5326# Test that the async callback correctly signs the 36-byte hash of TLS 1.0/1.1
5327# with RSA PKCS#1v1.5 as used in TLS 1.0/1.1.
5328requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
5329requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
5330run_test "SSL async private: sign, RSA, TLS 1.1" \
5331 "$P_SRV key_file=data_files/server2.key crt_file=data_files/server2.crt \
5332 async_operations=s async_private_delay1=0 async_private_delay2=0" \
5333 "$P_CLI force_version=tls1_1" \
5334 0 \
5335 -s "Async sign callback: using key slot " \
5336 -s "Async resume (slot [0-9]): sign done, status=0"
5337
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5338requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine807d74a2018-04-30 10:30:49 +0200[diff] [blame]5339run_test "SSL async private: sign, SNI" \
5340 "$P_SRV debug_level=3 \
5341 async_operations=s async_private_delay1=0 async_private_delay2=0 \
5342 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5343 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
5344 "$P_CLI server_name=polarssl.example" \
5345 0 \
5346 -s "Async sign callback: using key slot " \
5347 -s "Async resume (slot [0-9]): sign done, status=0" \
5348 -s "parse ServerName extension" \
5349 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
5350 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
5351
5352requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5353run_test "SSL async private: decrypt, delay=0" \
5354 "$P_SRV \
5355 async_operations=d async_private_delay1=0 async_private_delay2=0" \
5356 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5357 0 \
5358 -s "Async decrypt callback: using key slot " \
5359 -s "Async resume (slot [0-9]): decrypt done, status=0"
5360
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5361requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5362run_test "SSL async private: decrypt, delay=1" \
5363 "$P_SRV \
5364 async_operations=d async_private_delay1=1 async_private_delay2=1" \
5365 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5366 0 \
5367 -s "Async decrypt callback: using key slot " \
5368 -s "Async resume (slot [0-9]): call 0 more times." \
5369 -s "Async resume (slot [0-9]): decrypt done, status=0"
5370
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5371requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5372run_test "SSL async private: decrypt RSA-PSK, delay=0" \
5373 "$P_SRV psk=abc123 \
5374 async_operations=d async_private_delay1=0 async_private_delay2=0" \
5375 "$P_CLI psk=abc123 \
5376 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256" \
5377 0 \
5378 -s "Async decrypt callback: using key slot " \
5379 -s "Async resume (slot [0-9]): decrypt done, status=0"
5380
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5381requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5382run_test "SSL async private: decrypt RSA-PSK, delay=1" \
5383 "$P_SRV psk=abc123 \
5384 async_operations=d async_private_delay1=1 async_private_delay2=1" \
5385 "$P_CLI psk=abc123 \
5386 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256" \
5387 0 \
5388 -s "Async decrypt callback: using key slot " \
5389 -s "Async resume (slot [0-9]): call 0 more times." \
5390 -s "Async resume (slot [0-9]): decrypt done, status=0"
5391
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5392requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5393run_test "SSL async private: sign callback not present" \
5394 "$P_SRV \
5395 async_operations=d async_private_delay1=1 async_private_delay2=1" \
5396 "$P_CLI; [ \$? -eq 1 ] &&
5397 $P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5398 0 \
5399 -S "Async sign callback" \
5400 -s "! mbedtls_ssl_handshake returned" \
5401 -s "The own private key or pre-shared key is not set, but needed" \
5402 -s "Async resume (slot [0-9]): decrypt done, status=0" \
5403 -s "Successful connection"
5404
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5405requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5406run_test "SSL async private: decrypt callback not present" \
5407 "$P_SRV debug_level=1 \
5408 async_operations=s async_private_delay1=1 async_private_delay2=1" \
5409 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA;
5410 [ \$? -eq 1 ] && $P_CLI" \
5411 0 \
5412 -S "Async decrypt callback" \
5413 -s "! mbedtls_ssl_handshake returned" \
5414 -s "got no RSA private key" \
5415 -s "Async resume (slot [0-9]): sign done, status=0" \
5416 -s "Successful connection"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5417
5418# key1: ECDSA, key2: RSA; use key1 from slot 0
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5419requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5420run_test "SSL async private: slot 0 used with key1" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5421 "$P_SRV \
5422 async_operations=s async_private_delay1=1 \
5423 key_file=data_files/server5.key crt_file=data_files/server5.crt \
5424 key_file2=data_files/server2.key crt_file2=data_files/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5425 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
5426 0 \
5427 -s "Async sign callback: using key slot 0," \
5428 -s "Async resume (slot 0): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5429 -s "Async resume (slot 0): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5430
5431# key1: ECDSA, key2: RSA; use key2 from slot 0
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5432requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5433run_test "SSL async private: slot 0 used with key2" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5434 "$P_SRV \
5435 async_operations=s async_private_delay2=1 \
5436 key_file=data_files/server5.key crt_file=data_files/server5.crt \
5437 key_file2=data_files/server2.key crt_file2=data_files/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5438 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
5439 0 \
5440 -s "Async sign callback: using key slot 0," \
5441 -s "Async resume (slot 0): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5442 -s "Async resume (slot 0): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5443
5444# key1: ECDSA, key2: RSA; use key2 from slot 1
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5445requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinead28bf02018-04-26 00:19:16 +0200[diff] [blame]5446run_test "SSL async private: slot 1 used with key2" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5447 "$P_SRV \
Gilles Peskine168dae82018-04-25 23:35:42 +0200[diff] [blame]5448 async_operations=s async_private_delay1=1 async_private_delay2=1 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5449 key_file=data_files/server5.key crt_file=data_files/server5.crt \
5450 key_file2=data_files/server2.key crt_file2=data_files/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5451 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
5452 0 \
5453 -s "Async sign callback: using key slot 1," \
5454 -s "Async resume (slot 1): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5455 -s "Async resume (slot 1): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5456
5457# key1: ECDSA, key2: RSA; use key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5458requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5459run_test "SSL async private: fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5460 "$P_SRV \
5461 async_operations=s async_private_delay1=1 \
5462 key_file=data_files/server5.key crt_file=data_files/server5.crt \
5463 key_file2=data_files/server2.key crt_file2=data_files/server2.crt " \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5464 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
5465 0 \
5466 -s "Async sign callback: no key matches this certificate."
5467
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5468requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]5469run_test "SSL async private: sign, error in start" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5470 "$P_SRV \
5471 async_operations=s async_private_delay1=1 async_private_delay2=1 \
5472 async_private_error=1" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5473 "$P_CLI" \
5474 1 \
5475 -s "Async sign callback: injected error" \
5476 -S "Async resume" \
Gilles Peskine37289cd2018-04-27 11:50:14 +0200[diff] [blame]5477 -S "Async cancel" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5478 -s "! mbedtls_ssl_handshake returned"
5479
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5480requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]5481run_test "SSL async private: sign, cancel after start" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5482 "$P_SRV \
5483 async_operations=s async_private_delay1=1 async_private_delay2=1 \
5484 async_private_error=2" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5485 "$P_CLI" \
5486 1 \
5487 -s "Async sign callback: using key slot " \
5488 -S "Async resume" \
5489 -s "Async cancel"
5490
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5491requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]5492run_test "SSL async private: sign, error in resume" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5493 "$P_SRV \
5494 async_operations=s async_private_delay1=1 async_private_delay2=1 \
5495 async_private_error=3" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5496 "$P_CLI" \
5497 1 \
5498 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5499 -s "Async resume callback: sign done but injected error" \
Gilles Peskine37289cd2018-04-27 11:50:14 +0200[diff] [blame]5500 -S "Async cancel" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5501 -s "! mbedtls_ssl_handshake returned"
5502
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5503requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]5504run_test "SSL async private: decrypt, error in start" \
5505 "$P_SRV \
5506 async_operations=d async_private_delay1=1 async_private_delay2=1 \
5507 async_private_error=1" \
5508 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5509 1 \
5510 -s "Async decrypt callback: injected error" \
5511 -S "Async resume" \
5512 -S "Async cancel" \
5513 -s "! mbedtls_ssl_handshake returned"
5514
5515requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
5516run_test "SSL async private: decrypt, cancel after start" \
5517 "$P_SRV \
5518 async_operations=d async_private_delay1=1 async_private_delay2=1 \
5519 async_private_error=2" \
5520 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5521 1 \
5522 -s "Async decrypt callback: using key slot " \
5523 -S "Async resume" \
5524 -s "Async cancel"
5525
5526requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
5527run_test "SSL async private: decrypt, error in resume" \
5528 "$P_SRV \
5529 async_operations=d async_private_delay1=1 async_private_delay2=1 \
5530 async_private_error=3" \
5531 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5532 1 \
5533 -s "Async decrypt callback: using key slot " \
5534 -s "Async resume callback: decrypt done but injected error" \
5535 -S "Async cancel" \
5536 -s "! mbedtls_ssl_handshake returned"
5537
5538requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]5539run_test "SSL async private: cancel after start then operate correctly" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5540 "$P_SRV \
5541 async_operations=s async_private_delay1=1 async_private_delay2=1 \
5542 async_private_error=-2" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]5543 "$P_CLI; [ \$? -eq 1 ] && $P_CLI" \
5544 0 \
5545 -s "Async cancel" \
5546 -s "! mbedtls_ssl_handshake returned" \
5547 -s "Async resume" \
5548 -s "Successful connection"
5549
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5550requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]5551run_test "SSL async private: error in resume then operate correctly" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5552 "$P_SRV \
5553 async_operations=s async_private_delay1=1 async_private_delay2=1 \
5554 async_private_error=-3" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]5555 "$P_CLI; [ \$? -eq 1 ] && $P_CLI" \
5556 0 \
5557 -s "! mbedtls_ssl_handshake returned" \
5558 -s "Async resume" \
5559 -s "Successful connection"
5560
5561# key1: ECDSA, key2: RSA; use key1 through async, then key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5562requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]5563run_test "SSL async private: cancel after start then fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5564 "$P_SRV \
5565 async_operations=s async_private_delay1=1 async_private_error=-2 \
5566 key_file=data_files/server5.key crt_file=data_files/server5.crt \
5567 key_file2=data_files/server2.key crt_file2=data_files/server2.crt" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]5568 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256;
5569 [ \$? -eq 1 ] &&
5570 $P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
5571 0 \
Gilles Peskinededa75a2018-04-30 10:02:45 +0200[diff] [blame]5572 -s "Async sign callback: using key slot 0" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]5573 -S "Async resume" \
5574 -s "Async cancel" \
5575 -s "! mbedtls_ssl_handshake returned" \
5576 -s "Async sign callback: no key matches this certificate." \
5577 -s "Successful connection"
5578
5579# key1: ECDSA, key2: RSA; use key1 through async, then key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5580requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]5581run_test "SSL async private: sign, error in resume then fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5582 "$P_SRV \
5583 async_operations=s async_private_delay1=1 async_private_error=-3 \
5584 key_file=data_files/server5.key crt_file=data_files/server5.crt \
5585 key_file2=data_files/server2.key crt_file2=data_files/server2.crt" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]5586 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256;
5587 [ \$? -eq 1 ] &&
5588 $P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
5589 0 \
5590 -s "Async resume" \
5591 -s "! mbedtls_ssl_handshake returned" \
5592 -s "Async sign callback: no key matches this certificate." \
5593 -s "Successful connection"
5594
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5595requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5596requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5597run_test "SSL async private: renegotiation: client-initiated; sign" \
5598 "$P_SRV \
5599 async_operations=s async_private_delay1=1 async_private_delay2=1 \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5600 exchanges=2 renegotiation=1" \
5601 "$P_CLI exchanges=2 renegotiation=1 renegotiate=1" \
5602 0 \
5603 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5604 -s "Async resume (slot [0-9]): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5605
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5606requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5607requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5608run_test "SSL async private: renegotiation: server-initiated; sign" \
5609 "$P_SRV \
5610 async_operations=s async_private_delay1=1 async_private_delay2=1 \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5611 exchanges=2 renegotiation=1 renegotiate=1" \
5612 "$P_CLI exchanges=2 renegotiation=1" \
5613 0 \
5614 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5615 -s "Async resume (slot [0-9]): sign done, status=0"
5616
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5617requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5618requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
5619run_test "SSL async private: renegotiation: client-initiated; decrypt" \
5620 "$P_SRV \
5621 async_operations=d async_private_delay1=1 async_private_delay2=1 \
5622 exchanges=2 renegotiation=1" \
5623 "$P_CLI exchanges=2 renegotiation=1 renegotiate=1 \
5624 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5625 0 \
5626 -s "Async decrypt callback: using key slot " \
5627 -s "Async resume (slot [0-9]): decrypt done, status=0"
5628
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]5629requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]5630requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
5631run_test "SSL async private: renegotiation: server-initiated; decrypt" \
5632 "$P_SRV \
5633 async_operations=d async_private_delay1=1 async_private_delay2=1 \
5634 exchanges=2 renegotiation=1 renegotiate=1" \
5635 "$P_CLI exchanges=2 renegotiation=1 \
5636 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5637 0 \
5638 -s "Async decrypt callback: using key slot " \
5639 -s "Async resume (slot [0-9]): decrypt done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]5640
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]5641# Tests for ECC extensions (rfc 4492)
5642
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]5643requires_config_enabled MBEDTLS_AES_C
5644requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
5645requires_config_enabled MBEDTLS_SHA256_C
5646requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]5647run_test "Force a non ECC ciphersuite in the client side" \
5648 "$P_SRV debug_level=3" \
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]5649 "$P_CLI debug_level=3 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA256" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]5650 0 \
5651 -C "client hello, adding supported_elliptic_curves extension" \
5652 -C "client hello, adding supported_point_formats extension" \
5653 -S "found supported elliptic curves extension" \
5654 -S "found supported point formats extension"
5655
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]5656requires_config_enabled MBEDTLS_AES_C
5657requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
5658requires_config_enabled MBEDTLS_SHA256_C
5659requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]5660run_test "Force a non ECC ciphersuite in the server side" \
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]5661 "$P_SRV debug_level=3 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA256" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]5662 "$P_CLI debug_level=3" \
5663 0 \
5664 -C "found supported_point_formats extension" \
5665 -S "server hello, supported_point_formats extension"
5666
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]5667requires_config_enabled MBEDTLS_AES_C
5668requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
5669requires_config_enabled MBEDTLS_SHA256_C
5670requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]5671run_test "Force an ECC ciphersuite in the client side" \
5672 "$P_SRV debug_level=3" \
5673 "$P_CLI debug_level=3 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
5674 0 \
5675 -c "client hello, adding supported_elliptic_curves extension" \
5676 -c "client hello, adding supported_point_formats extension" \
5677 -s "found supported elliptic curves extension" \
5678 -s "found supported point formats extension"
5679
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]5680requires_config_enabled MBEDTLS_AES_C
5681requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
5682requires_config_enabled MBEDTLS_SHA256_C
5683requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]5684run_test "Force an ECC ciphersuite in the server side" \
5685 "$P_SRV debug_level=3 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
5686 "$P_CLI debug_level=3" \
5687 0 \
5688 -c "found supported_point_formats extension" \
5689 -s "server hello, supported_point_formats extension"
5690
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5691# Tests for DTLS HelloVerifyRequest
5692
5693run_test "DTLS cookie: enabled" \
5694 "$P_SRV dtls=1 debug_level=2" \
5695 "$P_CLI dtls=1 debug_level=2" \
5696 0 \
5697 -s "cookie verification failed" \
5698 -s "cookie verification passed" \
5699 -S "cookie verification skipped" \
5700 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]5701 -s "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5702 -S "SSL - The requested feature is not available"
5703
5704run_test "DTLS cookie: disabled" \
5705 "$P_SRV dtls=1 debug_level=2 cookies=0" \
5706 "$P_CLI dtls=1 debug_level=2" \
5707 0 \
5708 -S "cookie verification failed" \
5709 -S "cookie verification passed" \
5710 -s "cookie verification skipped" \
5711 -C "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]5712 -S "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5713 -S "SSL - The requested feature is not available"
5714
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]5715run_test "DTLS cookie: default (failing)" \
5716 "$P_SRV dtls=1 debug_level=2 cookies=-1" \
5717 "$P_CLI dtls=1 debug_level=2 hs_timeout=100-400" \
5718 1 \
5719 -s "cookie verification failed" \
5720 -S "cookie verification passed" \
5721 -S "cookie verification skipped" \
5722 -C "received hello verify request" \
5723 -S "hello verification requested" \
5724 -s "SSL - The requested feature is not available"
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5725
5726requires_ipv6
5727run_test "DTLS cookie: enabled, IPv6" \
5728 "$P_SRV dtls=1 debug_level=2 server_addr=::1" \
5729 "$P_CLI dtls=1 debug_level=2 server_addr=::1" \
5730 0 \
5731 -s "cookie verification failed" \
5732 -s "cookie verification passed" \
5733 -S "cookie verification skipped" \
5734 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]5735 -s "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5736 -S "SSL - The requested feature is not available"
5737
Manuel Pégourié-Gonnard579950c2014-09-29 17:47:33 +0200[diff] [blame]5738run_test "DTLS cookie: enabled, nbio" \
5739 "$P_SRV dtls=1 nbio=2 debug_level=2" \
5740 "$P_CLI dtls=1 nbio=2 debug_level=2" \
5741 0 \
5742 -s "cookie verification failed" \
5743 -s "cookie verification passed" \
5744 -S "cookie verification skipped" \
5745 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]5746 -s "hello verification requested" \
Manuel Pégourié-Gonnard579950c2014-09-29 17:47:33 +0200[diff] [blame]5747 -S "SSL - The requested feature is not available"
5748
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]5749# Tests for client reconnecting from the same port with DTLS
5750
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]5751not_with_valgrind # spurious resend
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]5752run_test "DTLS client reconnect from same port: reference" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]5753 "$P_SRV dtls=1 exchanges=2 read_timeout=1000" \
5754 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=500-1000" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]5755 0 \
5756 -C "resend" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]5757 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]5758 -S "Client initiated reconnection from same port"
5759
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]5760not_with_valgrind # spurious resend
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]5761run_test "DTLS client reconnect from same port: reconnect" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]5762 "$P_SRV dtls=1 exchanges=2 read_timeout=1000" \
5763 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=500-1000 reconnect_hard=1" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]5764 0 \
5765 -C "resend" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]5766 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]5767 -s "Client initiated reconnection from same port"
5768
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]5769not_with_valgrind # server/client too slow to respond in time (next test has higher timeouts)
5770run_test "DTLS client reconnect from same port: reconnect, nbio, no valgrind" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]5771 "$P_SRV dtls=1 exchanges=2 read_timeout=1000 nbio=2" \
5772 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=500-1000 reconnect_hard=1" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]5773 0 \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]5774 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]5775 -s "Client initiated reconnection from same port"
5776
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]5777only_with_valgrind # Only with valgrind, do previous test but with higher read_timeout and hs_timeout
5778run_test "DTLS client reconnect from same port: reconnect, nbio, valgrind" \
5779 "$P_SRV dtls=1 exchanges=2 read_timeout=2000 nbio=2 hs_timeout=1500-6000" \
5780 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=1500-3000 reconnect_hard=1" \
5781 0 \
5782 -S "The operation timed out" \
5783 -s "Client initiated reconnection from same port"
5784
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]5785run_test "DTLS client reconnect from same port: no cookies" \
5786 "$P_SRV dtls=1 exchanges=2 read_timeout=1000 cookies=0" \
Manuel Pégourié-Gonnard6ad23b92015-09-15 12:57:46 +0200[diff] [blame]5787 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=500-8000 reconnect_hard=1" \
5788 0 \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]5789 -s "The operation timed out" \
5790 -S "Client initiated reconnection from same port"
5791
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]5792# Tests for various cases of client authentication with DTLS
5793# (focused on handshake flows and message parsing)
5794
5795run_test "DTLS client auth: required" \
5796 "$P_SRV dtls=1 auth_mode=required" \
5797 "$P_CLI dtls=1" \
5798 0 \
5799 -s "Verifying peer X.509 certificate... ok"
5800
5801run_test "DTLS client auth: optional, client has no cert" \
5802 "$P_SRV dtls=1 auth_mode=optional" \
5803 "$P_CLI dtls=1 crt_file=none key_file=none" \
5804 0 \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]5805 -s "! Certificate was missing"
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]5806
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]5807run_test "DTLS client auth: none, client has no cert" \
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]5808 "$P_SRV dtls=1 auth_mode=none" \
5809 "$P_CLI dtls=1 crt_file=none key_file=none debug_level=2" \
5810 0 \
5811 -c "skip write certificate$" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]5812 -s "! Certificate verification was skipped"
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]5813
Manuel Pégourié-Gonnard0a885742015-08-04 12:08:35 +0200[diff] [blame]5814run_test "DTLS wrong PSK: badmac alert" \
5815 "$P_SRV dtls=1 psk=abc123 force_ciphersuite=TLS-PSK-WITH-AES-128-GCM-SHA256" \
5816 "$P_CLI dtls=1 psk=abc124" \
5817 1 \
5818 -s "SSL - Verification of the message MAC failed" \
5819 -c "SSL - A fatal alert message was received from our peer"
5820
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]5821# Tests for receiving fragmented handshake messages with DTLS
5822
5823requires_gnutls
5824run_test "DTLS reassembly: no fragmentation (gnutls server)" \
5825 "$G_SRV -u --mtu 2048 -a" \
5826 "$P_CLI dtls=1 debug_level=2" \
5827 0 \
5828 -C "found fragmented DTLS handshake message" \
5829 -C "error"
5830
5831requires_gnutls
5832run_test "DTLS reassembly: some fragmentation (gnutls server)" \
5833 "$G_SRV -u --mtu 512" \
5834 "$P_CLI dtls=1 debug_level=2" \
5835 0 \
5836 -c "found fragmented DTLS handshake message" \
5837 -C "error"
5838
5839requires_gnutls
5840run_test "DTLS reassembly: more fragmentation (gnutls server)" \
5841 "$G_SRV -u --mtu 128" \
5842 "$P_CLI dtls=1 debug_level=2" \
5843 0 \
5844 -c "found fragmented DTLS handshake message" \
5845 -C "error"
5846
5847requires_gnutls
5848run_test "DTLS reassembly: more fragmentation, nbio (gnutls server)" \
5849 "$G_SRV -u --mtu 128" \
5850 "$P_CLI dtls=1 nbio=2 debug_level=2" \
5851 0 \
5852 -c "found fragmented DTLS handshake message" \
5853 -C "error"
5854
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]5855requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5856requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]5857run_test "DTLS reassembly: fragmentation, renego (gnutls server)" \
5858 "$G_SRV -u --mtu 256" \
5859 "$P_CLI debug_level=3 dtls=1 renegotiation=1 renegotiate=1" \
5860 0 \
5861 -c "found fragmented DTLS handshake message" \
5862 -c "client hello, adding renegotiation extension" \
5863 -c "found renegotiation extension" \
5864 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5865 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]5866 -C "error" \
5867 -s "Extra-header:"
5868
5869requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5870requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]5871run_test "DTLS reassembly: fragmentation, nbio, renego (gnutls server)" \
5872 "$G_SRV -u --mtu 256" \
5873 "$P_CLI debug_level=3 nbio=2 dtls=1 renegotiation=1 renegotiate=1" \
5874 0 \
5875 -c "found fragmented DTLS handshake message" \
5876 -c "client hello, adding renegotiation extension" \
5877 -c "found renegotiation extension" \
5878 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5879 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]5880 -C "error" \
5881 -s "Extra-header:"
5882
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]5883run_test "DTLS reassembly: no fragmentation (openssl server)" \
5884 "$O_SRV -dtls1 -mtu 2048" \
5885 "$P_CLI dtls=1 debug_level=2" \
5886 0 \
5887 -C "found fragmented DTLS handshake message" \
5888 -C "error"
5889
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]5890run_test "DTLS reassembly: some fragmentation (openssl server)" \
5891 "$O_SRV -dtls1 -mtu 768" \
Manuel Pégourié-Gonnard64dffc52014-09-02 13:39:16 +0200[diff] [blame]5892 "$P_CLI dtls=1 debug_level=2" \
5893 0 \
5894 -c "found fragmented DTLS handshake message" \
5895 -C "error"
5896
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]5897run_test "DTLS reassembly: more fragmentation (openssl server)" \
Manuel Pégourié-Gonnard64dffc52014-09-02 13:39:16 +0200[diff] [blame]5898 "$O_SRV -dtls1 -mtu 256" \
5899 "$P_CLI dtls=1 debug_level=2" \
5900 0 \
5901 -c "found fragmented DTLS handshake message" \
5902 -C "error"
5903
5904run_test "DTLS reassembly: fragmentation, nbio (openssl server)" \
5905 "$O_SRV -dtls1 -mtu 256" \
5906 "$P_CLI dtls=1 nbio=2 debug_level=2" \
5907 0 \
5908 -c "found fragmented DTLS handshake message" \
5909 -C "error"
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]5910
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5911# Tests for sending fragmented handshake messages with DTLS
5912#
5913# Use client auth when we need the client to send large messages,
5914# and use large cert chains on both sides too (the long chains we have all use
5915# both RSA and ECDSA, but ideally we should have long chains with either).
5916# Sizes reached (UDP payload):
5917# - 2037B for server certificate
5918# - 1542B for client certificate
5919# - 1013B for newsessionticket
5920# - all others below 512B
5921# All those tests assume MAX_CONTENT_LEN is at least 2048
5922
5923requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
5924requires_config_enabled MBEDTLS_RSA_C
5925requires_config_enabled MBEDTLS_ECDSA_C
5926requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
5927run_test "DTLS fragmenting: none (for reference)" \
5928 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
5929 crt_file=data_files/server7_int-ca.crt \
5930 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]5931 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]5932 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5933 "$P_CLI dtls=1 debug_level=2 \
5934 crt_file=data_files/server8_int-ca2.crt \
5935 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]5936 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]5937 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5938 0 \
5939 -S "found fragmented DTLS handshake message" \
5940 -C "found fragmented DTLS handshake message" \
5941 -C "error"
5942
5943requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
5944requires_config_enabled MBEDTLS_RSA_C
5945requires_config_enabled MBEDTLS_ECDSA_C
5946requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]5947run_test "DTLS fragmenting: server only (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5948 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
5949 crt_file=data_files/server7_int-ca.crt \
5950 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]5951 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5952 max_frag_len=1024" \
5953 "$P_CLI dtls=1 debug_level=2 \
5954 crt_file=data_files/server8_int-ca2.crt \
5955 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]5956 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5957 max_frag_len=2048" \
5958 0 \
5959 -S "found fragmented DTLS handshake message" \
5960 -c "found fragmented DTLS handshake message" \
5961 -C "error"
5962
Hanno Becker69ca0ad2018-08-24 12:11:35 +0100[diff] [blame]5963# With the MFL extension, the server has no way of forcing
5964# the client to not exceed a certain MTU; hence, the following
5965# test can't be replicated with an MTU proxy such as the one
5966# `client-initiated, server only (max_frag_len)` below.
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5967requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
5968requires_config_enabled MBEDTLS_RSA_C
5969requires_config_enabled MBEDTLS_ECDSA_C
5970requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]5971run_test "DTLS fragmenting: server only (more) (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5972 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
5973 crt_file=data_files/server7_int-ca.crt \
5974 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]5975 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5976 max_frag_len=512" \
5977 "$P_CLI dtls=1 debug_level=2 \
5978 crt_file=data_files/server8_int-ca2.crt \
5979 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]5980 hs_timeout=2500-60000 \
Hanno Becker69ca0ad2018-08-24 12:11:35 +0100[diff] [blame]5981 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5982 0 \
5983 -S "found fragmented DTLS handshake message" \
5984 -c "found fragmented DTLS handshake message" \
5985 -C "error"
5986
5987requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
5988requires_config_enabled MBEDTLS_RSA_C
5989requires_config_enabled MBEDTLS_ECDSA_C
5990requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]5991run_test "DTLS fragmenting: client-initiated, server only (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5992 "$P_SRV dtls=1 debug_level=2 auth_mode=none \
5993 crt_file=data_files/server7_int-ca.crt \
5994 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]5995 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]5996 max_frag_len=2048" \
5997 "$P_CLI dtls=1 debug_level=2 \
5998 crt_file=data_files/server8_int-ca2.crt \
5999 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6000 hs_timeout=2500-60000 \
6001 max_frag_len=1024" \
6002 0 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]6003 -S "found fragmented DTLS handshake message" \
6004 -c "found fragmented DTLS handshake message" \
6005 -C "error"
6006
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]6007# While not required by the standard defining the MFL extension
6008# (according to which it only applies to records, not to datagrams),
6009# Mbed TLS will never send datagrams larger than MFL + { Max record expansion },
6010# as otherwise there wouldn't be any means to communicate MTU restrictions
6011# to the peer.
6012# The next test checks that no datagrams significantly larger than the
6013# negotiated MFL are sent.
6014requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6015requires_config_enabled MBEDTLS_RSA_C
6016requires_config_enabled MBEDTLS_ECDSA_C
6017requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
6018run_test "DTLS fragmenting: client-initiated, server only (max_frag_len), proxy MTU" \
Andrzej Kurek0fc9cf42018-10-09 03:09:41 -0400[diff] [blame]6019 -p "$P_PXY mtu=1110" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]6020 "$P_SRV dtls=1 debug_level=2 auth_mode=none \
6021 crt_file=data_files/server7_int-ca.crt \
6022 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6023 hs_timeout=2500-60000 \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]6024 max_frag_len=2048" \
6025 "$P_CLI dtls=1 debug_level=2 \
6026 crt_file=data_files/server8_int-ca2.crt \
6027 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6028 hs_timeout=2500-60000 \
6029 max_frag_len=1024" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]6030 0 \
6031 -S "found fragmented DTLS handshake message" \
6032 -c "found fragmented DTLS handshake message" \
6033 -C "error"
6034
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]6035requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6036requires_config_enabled MBEDTLS_RSA_C
6037requires_config_enabled MBEDTLS_ECDSA_C
6038requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6039run_test "DTLS fragmenting: client-initiated, both (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]6040 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6041 crt_file=data_files/server7_int-ca.crt \
6042 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6043 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]6044 max_frag_len=2048" \
6045 "$P_CLI dtls=1 debug_level=2 \
6046 crt_file=data_files/server8_int-ca2.crt \
6047 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6048 hs_timeout=2500-60000 \
6049 max_frag_len=1024" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]6050 0 \
6051 -s "found fragmented DTLS handshake message" \
6052 -c "found fragmented DTLS handshake message" \
6053 -C "error"
6054
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]6055# While not required by the standard defining the MFL extension
6056# (according to which it only applies to records, not to datagrams),
6057# Mbed TLS will never send datagrams larger than MFL + { Max record expansion },
6058# as otherwise there wouldn't be any means to communicate MTU restrictions
6059# to the peer.
6060# The next test checks that no datagrams significantly larger than the
6061# negotiated MFL are sent.
6062requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6063requires_config_enabled MBEDTLS_RSA_C
6064requires_config_enabled MBEDTLS_ECDSA_C
6065requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
6066run_test "DTLS fragmenting: client-initiated, both (max_frag_len), proxy MTU" \
Andrzej Kurek0fc9cf42018-10-09 03:09:41 -0400[diff] [blame]6067 -p "$P_PXY mtu=1110" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]6068 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6069 crt_file=data_files/server7_int-ca.crt \
6070 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6071 hs_timeout=2500-60000 \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]6072 max_frag_len=2048" \
6073 "$P_CLI dtls=1 debug_level=2 \
6074 crt_file=data_files/server8_int-ca2.crt \
6075 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6076 hs_timeout=2500-60000 \
6077 max_frag_len=1024" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]6078 0 \
6079 -s "found fragmented DTLS handshake message" \
6080 -c "found fragmented DTLS handshake message" \
6081 -C "error"
6082
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6083requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6084requires_config_enabled MBEDTLS_RSA_C
6085requires_config_enabled MBEDTLS_ECDSA_C
6086run_test "DTLS fragmenting: none (for reference) (MTU)" \
6087 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6088 crt_file=data_files/server7_int-ca.crt \
6089 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6090 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]6091 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6092 "$P_CLI dtls=1 debug_level=2 \
6093 crt_file=data_files/server8_int-ca2.crt \
6094 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6095 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]6096 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6097 0 \
6098 -S "found fragmented DTLS handshake message" \
6099 -C "found fragmented DTLS handshake message" \
6100 -C "error"
6101
6102requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6103requires_config_enabled MBEDTLS_RSA_C
6104requires_config_enabled MBEDTLS_ECDSA_C
6105run_test "DTLS fragmenting: client (MTU)" \
6106 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6107 crt_file=data_files/server7_int-ca.crt \
6108 key_file=data_files/server7.key \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]6109 hs_timeout=3500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]6110 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6111 "$P_CLI dtls=1 debug_level=2 \
6112 crt_file=data_files/server8_int-ca2.crt \
6113 key_file=data_files/server8.key \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]6114 hs_timeout=3500-60000 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6115 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6116 0 \
6117 -s "found fragmented DTLS handshake message" \
6118 -C "found fragmented DTLS handshake message" \
6119 -C "error"
6120
6121requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6122requires_config_enabled MBEDTLS_RSA_C
6123requires_config_enabled MBEDTLS_ECDSA_C
6124run_test "DTLS fragmenting: server (MTU)" \
6125 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6126 crt_file=data_files/server7_int-ca.crt \
6127 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6128 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6129 mtu=512" \
6130 "$P_CLI dtls=1 debug_level=2 \
6131 crt_file=data_files/server8_int-ca2.crt \
6132 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6133 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6134 mtu=2048" \
6135 0 \
6136 -S "found fragmented DTLS handshake message" \
6137 -c "found fragmented DTLS handshake message" \
6138 -C "error"
6139
6140requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6141requires_config_enabled MBEDTLS_RSA_C
6142requires_config_enabled MBEDTLS_ECDSA_C
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6143run_test "DTLS fragmenting: both (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6144 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6145 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6146 crt_file=data_files/server7_int-ca.crt \
6147 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6148 hs_timeout=2500-60000 \
Andrzej Kurek95805282018-10-11 08:55:37 -0400[diff] [blame]6149 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6150 "$P_CLI dtls=1 debug_level=2 \
6151 crt_file=data_files/server8_int-ca2.crt \
6152 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6153 hs_timeout=2500-60000 \
6154 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]6155 0 \
6156 -s "found fragmented DTLS handshake message" \
6157 -c "found fragmented DTLS handshake message" \
6158 -C "error"
6159
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]6160# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6161requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6162requires_config_enabled MBEDTLS_RSA_C
6163requires_config_enabled MBEDTLS_ECDSA_C
6164requires_config_enabled MBEDTLS_SHA256_C
6165requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6166requires_config_enabled MBEDTLS_AES_C
6167requires_config_enabled MBEDTLS_GCM_C
6168run_test "DTLS fragmenting: both (MTU=512)" \
Hanno Becker8d832182018-03-15 10:14:19 +0000[diff] [blame]6169 -p "$P_PXY mtu=512" \
Hanno Becker72a4f032017-11-15 16:39:20 +0000[diff] [blame]6170 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6171 crt_file=data_files/server7_int-ca.crt \
6172 key_file=data_files/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6173 hs_timeout=2500-60000 \
Hanno Becker72a4f032017-11-15 16:39:20 +0000[diff] [blame]6174 mtu=512" \
6175 "$P_CLI dtls=1 debug_level=2 \
6176 crt_file=data_files/server8_int-ca2.crt \
6177 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6178 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
6179 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]6180 mtu=512" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]6181 0 \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]6182 -s "found fragmented DTLS handshake message" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]6183 -c "found fragmented DTLS handshake message" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]6184 -C "error"
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]6185
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6186# Test for automatic MTU reduction on repeated resend.
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]6187# Forcing ciphersuite for this test to fit the MTU of 508 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6188# The ratio of max/min timeout should ideally equal 4 to accept two
6189# retransmissions, but in some cases (like both the server and client using
6190# fragmentation and auto-reduction) an extra retransmission might occur,
6191# hence the ratio of 8.
Hanno Becker37029eb2018-08-29 17:01:40 +0100[diff] [blame]6192not_with_valgrind
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]6193requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6194requires_config_enabled MBEDTLS_RSA_C
6195requires_config_enabled MBEDTLS_ECDSA_C
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6196requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6197requires_config_enabled MBEDTLS_AES_C
6198requires_config_enabled MBEDTLS_GCM_C
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]6199run_test "DTLS fragmenting: proxy MTU: auto-reduction" \
6200 -p "$P_PXY mtu=508" \
6201 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6202 crt_file=data_files/server7_int-ca.crt \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6203 key_file=data_files/server7.key \
6204 hs_timeout=400-3200" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]6205 "$P_CLI dtls=1 debug_level=2 \
6206 crt_file=data_files/server8_int-ca2.crt \
6207 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6208 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
6209 hs_timeout=400-3200" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]6210 0 \
6211 -s "found fragmented DTLS handshake message" \
6212 -c "found fragmented DTLS handshake message" \
6213 -C "error"
6214
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]6215# Forcing ciphersuite for this test to fit the MTU of 508 with full config.
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]6216only_with_valgrind
6217requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6218requires_config_enabled MBEDTLS_RSA_C
6219requires_config_enabled MBEDTLS_ECDSA_C
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6220requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6221requires_config_enabled MBEDTLS_AES_C
6222requires_config_enabled MBEDTLS_GCM_C
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]6223run_test "DTLS fragmenting: proxy MTU: auto-reduction" \
6224 -p "$P_PXY mtu=508" \
6225 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6226 crt_file=data_files/server7_int-ca.crt \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6227 key_file=data_files/server7.key \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]6228 hs_timeout=250-10000" \
6229 "$P_CLI dtls=1 debug_level=2 \
6230 crt_file=data_files/server8_int-ca2.crt \
6231 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6232 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]6233 hs_timeout=250-10000" \
6234 0 \
6235 -s "found fragmented DTLS handshake message" \
6236 -c "found fragmented DTLS handshake message" \
6237 -C "error"
6238
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6239# the proxy shouldn't drop or mess up anything, so we shouldn't need to resend
Manuel Pégourié-Gonnard3d183ce2018-08-22 09:56:22 +0200[diff] [blame]6240# OTOH the client might resend if the server is to slow to reset after sending
6241# a HelloVerifyRequest, so only check for no retransmission server-side
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6242not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6243requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6244requires_config_enabled MBEDTLS_RSA_C
6245requires_config_enabled MBEDTLS_ECDSA_C
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6246run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6247 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6248 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6249 crt_file=data_files/server7_int-ca.crt \
6250 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6251 hs_timeout=10000-60000 \
6252 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6253 "$P_CLI dtls=1 debug_level=2 \
6254 crt_file=data_files/server8_int-ca2.crt \
6255 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6256 hs_timeout=10000-60000 \
6257 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6258 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6259 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6260 -s "found fragmented DTLS handshake message" \
6261 -c "found fragmented DTLS handshake message" \
6262 -C "error"
6263
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]6264# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6265# the proxy shouldn't drop or mess up anything, so we shouldn't need to resend
6266# OTOH the client might resend if the server is to slow to reset after sending
6267# a HelloVerifyRequest, so only check for no retransmission server-side
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6268not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]6269requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6270requires_config_enabled MBEDTLS_RSA_C
6271requires_config_enabled MBEDTLS_ECDSA_C
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6272requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6273requires_config_enabled MBEDTLS_AES_C
6274requires_config_enabled MBEDTLS_GCM_C
6275run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=512)" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]6276 -p "$P_PXY mtu=512" \
6277 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6278 crt_file=data_files/server7_int-ca.crt \
6279 key_file=data_files/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6280 hs_timeout=10000-60000 \
6281 mtu=512" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]6282 "$P_CLI dtls=1 debug_level=2 \
6283 crt_file=data_files/server8_int-ca2.crt \
6284 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6285 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
6286 hs_timeout=10000-60000 \
6287 mtu=512" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]6288 0 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6289 -S "autoreduction" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]6290 -s "found fragmented DTLS handshake message" \
6291 -c "found fragmented DTLS handshake message" \
6292 -C "error"
6293
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6294not_with_valgrind # spurious autoreduction due to timeout
6295requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6296requires_config_enabled MBEDTLS_RSA_C
6297requires_config_enabled MBEDTLS_ECDSA_C
6298run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6299 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6300 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6301 crt_file=data_files/server7_int-ca.crt \
6302 key_file=data_files/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6303 hs_timeout=10000-60000 \
6304 mtu=1024 nbio=2" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6305 "$P_CLI dtls=1 debug_level=2 \
6306 crt_file=data_files/server8_int-ca2.crt \
6307 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6308 hs_timeout=10000-60000 \
6309 mtu=1024 nbio=2" \
6310 0 \
6311 -S "autoreduction" \
6312 -s "found fragmented DTLS handshake message" \
6313 -c "found fragmented DTLS handshake message" \
6314 -C "error"
6315
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]6316# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6317not_with_valgrind # spurious autoreduction due to timeout
6318requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6319requires_config_enabled MBEDTLS_RSA_C
6320requires_config_enabled MBEDTLS_ECDSA_C
6321requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6322requires_config_enabled MBEDTLS_AES_C
6323requires_config_enabled MBEDTLS_GCM_C
6324run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=512)" \
6325 -p "$P_PXY mtu=512" \
6326 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6327 crt_file=data_files/server7_int-ca.crt \
6328 key_file=data_files/server7.key \
6329 hs_timeout=10000-60000 \
6330 mtu=512 nbio=2" \
6331 "$P_CLI dtls=1 debug_level=2 \
6332 crt_file=data_files/server8_int-ca2.crt \
6333 key_file=data_files/server8.key \
6334 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
6335 hs_timeout=10000-60000 \
6336 mtu=512 nbio=2" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6337 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6338 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6339 -s "found fragmented DTLS handshake message" \
6340 -c "found fragmented DTLS handshake message" \
6341 -C "error"
6342
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]6343# Forcing ciphersuite for this test to fit the MTU of 1450 with full config.
Hanno Beckerb841b4f2018-08-28 10:25:51 +0100[diff] [blame]6344# This ensures things still work after session_reset().
6345# It also exercises the "resumed handshake" flow.
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]6346# Since we don't support reading fragmented ClientHello yet,
6347# up the MTU to 1450 (larger than ClientHello with session ticket,
6348# but still smaller than client's Certificate to ensure fragmentation).
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6349# An autoreduction on the client-side might happen if the server is
6350# slow to reset, therefore omitting '-C "autoreduction"' below.
Manuel Pégourié-Gonnard2f2d9022018-08-21 12:17:54 +0200[diff] [blame]6351# reco_delay avoids races where the client reconnects before the server has
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6352# resumed listening, which would result in a spurious autoreduction.
6353not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]6354requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6355requires_config_enabled MBEDTLS_RSA_C
6356requires_config_enabled MBEDTLS_ECDSA_C
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6357requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6358requires_config_enabled MBEDTLS_AES_C
6359requires_config_enabled MBEDTLS_GCM_C
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]6360run_test "DTLS fragmenting: proxy MTU, resumed handshake" \
6361 -p "$P_PXY mtu=1450" \
6362 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6363 crt_file=data_files/server7_int-ca.crt \
6364 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6365 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]6366 mtu=1450" \
6367 "$P_CLI dtls=1 debug_level=2 \
6368 crt_file=data_files/server8_int-ca2.crt \
6369 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6370 hs_timeout=10000-60000 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6371 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard2f2d9022018-08-21 12:17:54 +0200[diff] [blame]6372 mtu=1450 reconnect=1 reco_delay=1" \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]6373 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6374 -S "autoreduction" \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]6375 -s "found fragmented DTLS handshake message" \
6376 -c "found fragmented DTLS handshake message" \
6377 -C "error"
6378
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6379# An autoreduction on the client-side might happen if the server is
6380# slow to reset, therefore omitting '-C "autoreduction"' below.
6381not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6382requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6383requires_config_enabled MBEDTLS_RSA_C
6384requires_config_enabled MBEDTLS_ECDSA_C
6385requires_config_enabled MBEDTLS_SHA256_C
6386requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6387requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
6388requires_config_enabled MBEDTLS_CHACHAPOLY_C
6389run_test "DTLS fragmenting: proxy MTU, ChachaPoly renego" \
6390 -p "$P_PXY mtu=512" \
6391 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6392 crt_file=data_files/server7_int-ca.crt \
6393 key_file=data_files/server7.key \
6394 exchanges=2 renegotiation=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6395 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6396 mtu=512" \
6397 "$P_CLI dtls=1 debug_level=2 \
6398 crt_file=data_files/server8_int-ca2.crt \
6399 key_file=data_files/server8.key \
6400 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6401 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6402 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6403 mtu=512" \
6404 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6405 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6406 -s "found fragmented DTLS handshake message" \
6407 -c "found fragmented DTLS handshake message" \
6408 -C "error"
6409
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6410# An autoreduction on the client-side might happen if the server is
6411# slow to reset, therefore omitting '-C "autoreduction"' below.
6412not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6413requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6414requires_config_enabled MBEDTLS_RSA_C
6415requires_config_enabled MBEDTLS_ECDSA_C
6416requires_config_enabled MBEDTLS_SHA256_C
6417requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6418requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
6419requires_config_enabled MBEDTLS_AES_C
6420requires_config_enabled MBEDTLS_GCM_C
6421run_test "DTLS fragmenting: proxy MTU, AES-GCM renego" \
6422 -p "$P_PXY mtu=512" \
6423 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6424 crt_file=data_files/server7_int-ca.crt \
6425 key_file=data_files/server7.key \
6426 exchanges=2 renegotiation=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6427 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6428 mtu=512" \
6429 "$P_CLI dtls=1 debug_level=2 \
6430 crt_file=data_files/server8_int-ca2.crt \
6431 key_file=data_files/server8.key \
6432 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6433 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6434 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6435 mtu=512" \
6436 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6437 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6438 -s "found fragmented DTLS handshake message" \
6439 -c "found fragmented DTLS handshake message" \
6440 -C "error"
6441
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6442# An autoreduction on the client-side might happen if the server is
6443# slow to reset, therefore omitting '-C "autoreduction"' below.
6444not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6445requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6446requires_config_enabled MBEDTLS_RSA_C
6447requires_config_enabled MBEDTLS_ECDSA_C
6448requires_config_enabled MBEDTLS_SHA256_C
6449requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6450requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
6451requires_config_enabled MBEDTLS_AES_C
6452requires_config_enabled MBEDTLS_CCM_C
6453run_test "DTLS fragmenting: proxy MTU, AES-CCM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6454 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6455 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6456 crt_file=data_files/server7_int-ca.crt \
6457 key_file=data_files/server7.key \
6458 exchanges=2 renegotiation=1 \
6459 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6460 hs_timeout=10000-60000 \
6461 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6462 "$P_CLI dtls=1 debug_level=2 \
6463 crt_file=data_files/server8_int-ca2.crt \
6464 key_file=data_files/server8.key \
6465 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6466 hs_timeout=10000-60000 \
6467 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6468 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6469 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6470 -s "found fragmented DTLS handshake message" \
6471 -c "found fragmented DTLS handshake message" \
6472 -C "error"
6473
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6474# An autoreduction on the client-side might happen if the server is
6475# slow to reset, therefore omitting '-C "autoreduction"' below.
6476not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6477requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6478requires_config_enabled MBEDTLS_RSA_C
6479requires_config_enabled MBEDTLS_ECDSA_C
6480requires_config_enabled MBEDTLS_SHA256_C
6481requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6482requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
6483requires_config_enabled MBEDTLS_AES_C
6484requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
6485requires_config_enabled MBEDTLS_SSL_ENCRYPT_THEN_MAC
6486run_test "DTLS fragmenting: proxy MTU, AES-CBC EtM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6487 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6488 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6489 crt_file=data_files/server7_int-ca.crt \
6490 key_file=data_files/server7.key \
6491 exchanges=2 renegotiation=1 \
6492 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6493 hs_timeout=10000-60000 \
6494 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6495 "$P_CLI dtls=1 debug_level=2 \
6496 crt_file=data_files/server8_int-ca2.crt \
6497 key_file=data_files/server8.key \
6498 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6499 hs_timeout=10000-60000 \
6500 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6501 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6502 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6503 -s "found fragmented DTLS handshake message" \
6504 -c "found fragmented DTLS handshake message" \
6505 -C "error"
6506
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6507# An autoreduction on the client-side might happen if the server is
6508# slow to reset, therefore omitting '-C "autoreduction"' below.
6509not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6510requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6511requires_config_enabled MBEDTLS_RSA_C
6512requires_config_enabled MBEDTLS_ECDSA_C
6513requires_config_enabled MBEDTLS_SHA256_C
6514requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6515requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
6516requires_config_enabled MBEDTLS_AES_C
6517requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
6518run_test "DTLS fragmenting: proxy MTU, AES-CBC non-EtM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6519 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6520 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6521 crt_file=data_files/server7_int-ca.crt \
6522 key_file=data_files/server7.key \
6523 exchanges=2 renegotiation=1 \
6524 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256 etm=0 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6525 hs_timeout=10000-60000 \
6526 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6527 "$P_CLI dtls=1 debug_level=2 \
6528 crt_file=data_files/server8_int-ca2.crt \
6529 key_file=data_files/server8.key \
6530 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]6531 hs_timeout=10000-60000 \
6532 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6533 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]6534 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]6535 -s "found fragmented DTLS handshake message" \
6536 -c "found fragmented DTLS handshake message" \
6537 -C "error"
6538
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]6539# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]6540requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6541requires_config_enabled MBEDTLS_RSA_C
6542requires_config_enabled MBEDTLS_ECDSA_C
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6543requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6544requires_config_enabled MBEDTLS_AES_C
6545requires_config_enabled MBEDTLS_GCM_C
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]6546client_needs_more_time 2
6547run_test "DTLS fragmenting: proxy MTU + 3d" \
6548 -p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6549 "$P_SRV dgram_packing=0 dtls=1 debug_level=2 auth_mode=required \
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]6550 crt_file=data_files/server7_int-ca.crt \
6551 key_file=data_files/server7.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6552 hs_timeout=250-10000 mtu=512" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6553 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]6554 crt_file=data_files/server8_int-ca2.crt \
6555 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6556 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6557 hs_timeout=250-10000 mtu=512" \
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]6558 0 \
6559 -s "found fragmented DTLS handshake message" \
6560 -c "found fragmented DTLS handshake message" \
6561 -C "error"
6562
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]6563# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]6564requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6565requires_config_enabled MBEDTLS_RSA_C
6566requires_config_enabled MBEDTLS_ECDSA_C
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6567requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
6568requires_config_enabled MBEDTLS_AES_C
6569requires_config_enabled MBEDTLS_GCM_C
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]6570client_needs_more_time 2
6571run_test "DTLS fragmenting: proxy MTU + 3d, nbio" \
6572 -p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
6573 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
6574 crt_file=data_files/server7_int-ca.crt \
6575 key_file=data_files/server7.key \
6576 hs_timeout=250-10000 mtu=512 nbio=2" \
6577 "$P_CLI dtls=1 debug_level=2 \
6578 crt_file=data_files/server8_int-ca2.crt \
6579 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]6580 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]6581 hs_timeout=250-10000 mtu=512 nbio=2" \
6582 0 \
6583 -s "found fragmented DTLS handshake message" \
6584 -c "found fragmented DTLS handshake message" \
6585 -C "error"
6586
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6587# interop tests for DTLS fragmentating with reliable connection
6588#
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6589# here and below we just want to test that the we fragment in a way that
6590# pleases other implementations, so we don't need the peer to fragment
6591requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6592requires_config_enabled MBEDTLS_RSA_C
6593requires_config_enabled MBEDTLS_ECDSA_C
6594requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]6595requires_gnutls
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6596run_test "DTLS fragmenting: gnutls server, DTLS 1.2" \
6597 "$G_SRV -u" \
6598 "$P_CLI dtls=1 debug_level=2 \
6599 crt_file=data_files/server8_int-ca2.crt \
6600 key_file=data_files/server8.key \
6601 mtu=512 force_version=dtls1_2" \
6602 0 \
6603 -c "fragmenting handshake message" \
6604 -C "error"
6605
6606requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6607requires_config_enabled MBEDTLS_RSA_C
6608requires_config_enabled MBEDTLS_ECDSA_C
6609requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]6610requires_gnutls
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6611run_test "DTLS fragmenting: gnutls server, DTLS 1.0" \
6612 "$G_SRV -u" \
6613 "$P_CLI dtls=1 debug_level=2 \
6614 crt_file=data_files/server8_int-ca2.crt \
6615 key_file=data_files/server8.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6616 mtu=512 force_version=dtls1" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6617 0 \
6618 -c "fragmenting handshake message" \
6619 -C "error"
6620
Hanno Beckerb9a00862018-08-28 10:20:22 +0100[diff] [blame]6621# We use --insecure for the GnuTLS client because it expects
6622# the hostname / IP it connects to to be the name used in the
6623# certificate obtained from the server. Here, however, it
6624# connects to 127.0.0.1 while our test certificates use 'localhost'
6625# as the server name in the certificate. This will make the
6626# certifiate validation fail, but passing --insecure makes
6627# GnuTLS continue the connection nonetheless.
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6628requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6629requires_config_enabled MBEDTLS_RSA_C
6630requires_config_enabled MBEDTLS_ECDSA_C
6631requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]6632requires_gnutls
Andrzej Kurekb4593462018-10-11 08:43:30 -0400[diff] [blame]6633requires_not_i686
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6634run_test "DTLS fragmenting: gnutls client, DTLS 1.2" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]6635 "$P_SRV dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6636 crt_file=data_files/server7_int-ca.crt \
6637 key_file=data_files/server7.key \
6638 mtu=512 force_version=dtls1_2" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]6639 "$G_CLI -u --insecure 127.0.0.1" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6640 0 \
6641 -s "fragmenting handshake message"
6642
Hanno Beckerb9a00862018-08-28 10:20:22 +0100[diff] [blame]6643# See previous test for the reason to use --insecure
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6644requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6645requires_config_enabled MBEDTLS_RSA_C
6646requires_config_enabled MBEDTLS_ECDSA_C
6647requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]6648requires_gnutls
Andrzej Kurekb4593462018-10-11 08:43:30 -0400[diff] [blame]6649requires_not_i686
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6650run_test "DTLS fragmenting: gnutls client, DTLS 1.0" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]6651 "$P_SRV dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6652 crt_file=data_files/server7_int-ca.crt \
6653 key_file=data_files/server7.key \
6654 mtu=512 force_version=dtls1" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]6655 "$G_CLI -u --insecure 127.0.0.1" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]6656 0 \
6657 -s "fragmenting handshake message"
6658
6659requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6660requires_config_enabled MBEDTLS_RSA_C
6661requires_config_enabled MBEDTLS_ECDSA_C
6662requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
6663run_test "DTLS fragmenting: openssl server, DTLS 1.2" \
6664 "$O_SRV -dtls1_2 -verify 10" \
6665 "$P_CLI dtls=1 debug_level=2 \
6666 crt_file=data_files/server8_int-ca2.crt \
6667 key_file=data_files/server8.key \
6668 mtu=512 force_version=dtls1_2" \
6669 0 \
6670 -c "fragmenting handshake message" \
6671 -C "error"
6672
6673requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6674requires_config_enabled MBEDTLS_RSA_C
6675requires_config_enabled MBEDTLS_ECDSA_C
6676requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
6677run_test "DTLS fragmenting: openssl server, DTLS 1.0" \
6678 "$O_SRV -dtls1 -verify 10" \
6679 "$P_CLI dtls=1 debug_level=2 \
6680 crt_file=data_files/server8_int-ca2.crt \
6681 key_file=data_files/server8.key \
6682 mtu=512 force_version=dtls1" \
6683 0 \
6684 -c "fragmenting handshake message" \
6685 -C "error"
6686
6687requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6688requires_config_enabled MBEDTLS_RSA_C
6689requires_config_enabled MBEDTLS_ECDSA_C
6690requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
6691run_test "DTLS fragmenting: openssl client, DTLS 1.2" \
6692 "$P_SRV dtls=1 debug_level=2 \
6693 crt_file=data_files/server7_int-ca.crt \
6694 key_file=data_files/server7.key \
6695 mtu=512 force_version=dtls1_2" \
6696 "$O_CLI -dtls1_2" \
6697 0 \
6698 -s "fragmenting handshake message"
6699
6700requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6701requires_config_enabled MBEDTLS_RSA_C
6702requires_config_enabled MBEDTLS_ECDSA_C
6703requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
6704run_test "DTLS fragmenting: openssl client, DTLS 1.0" \
6705 "$P_SRV dtls=1 debug_level=2 \
6706 crt_file=data_files/server7_int-ca.crt \
6707 key_file=data_files/server7.key \
6708 mtu=512 force_version=dtls1" \
6709 "$O_CLI -dtls1" \
6710 0 \
6711 -s "fragmenting handshake message"
6712
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6713# interop tests for DTLS fragmentating with unreliable connection
6714#
6715# again we just want to test that the we fragment in a way that
6716# pleases other implementations, so we don't need the peer to fragment
6717requires_gnutls_next
6718requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6719requires_config_enabled MBEDTLS_RSA_C
6720requires_config_enabled MBEDTLS_ECDSA_C
6721requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6722client_needs_more_time 4
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6723run_test "DTLS fragmenting: 3d, gnutls server, DTLS 1.2" \
6724 -p "$P_PXY drop=8 delay=8 duplicate=8" \
6725 "$G_NEXT_SRV -u" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6726 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6727 crt_file=data_files/server8_int-ca2.crt \
6728 key_file=data_files/server8.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6729 hs_timeout=250-60000 mtu=512 force_version=dtls1_2" \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6730 0 \
6731 -c "fragmenting handshake message" \
6732 -C "error"
6733
6734requires_gnutls_next
6735requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6736requires_config_enabled MBEDTLS_RSA_C
6737requires_config_enabled MBEDTLS_ECDSA_C
6738requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6739client_needs_more_time 4
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6740run_test "DTLS fragmenting: 3d, gnutls server, DTLS 1.0" \
6741 -p "$P_PXY drop=8 delay=8 duplicate=8" \
6742 "$G_NEXT_SRV -u" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6743 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6744 crt_file=data_files/server8_int-ca2.crt \
6745 key_file=data_files/server8.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6746 hs_timeout=250-60000 mtu=512 force_version=dtls1" \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6747 0 \
6748 -c "fragmenting handshake message" \
6749 -C "error"
6750
6751## The two tests below are disabled due to a bug in GnuTLS client that causes
6752## handshake failures when the NewSessionTicket message is lost, see
6753## https://gitlab.com/gnutls/gnutls/issues/543
6754## We can re-enable them when a fixed version fo GnuTLS is available
6755## and installed in our CI system.
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]6756skip_next_test
6757requires_gnutls
6758requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6759requires_config_enabled MBEDTLS_RSA_C
6760requires_config_enabled MBEDTLS_ECDSA_C
6761requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
6762client_needs_more_time 4
6763run_test "DTLS fragmenting: 3d, gnutls client, DTLS 1.2" \
6764 -p "$P_PXY drop=8 delay=8 duplicate=8" \
6765 "$P_SRV dtls=1 debug_level=2 \
6766 crt_file=data_files/server7_int-ca.crt \
6767 key_file=data_files/server7.key \
6768 hs_timeout=250-60000 mtu=512 force_version=dtls1_2" \
6769 "$G_CLI -u --insecure 127.0.0.1" \
6770 0 \
6771 -s "fragmenting handshake message"
6772
6773skip_next_test
6774requires_gnutls
6775requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6776requires_config_enabled MBEDTLS_RSA_C
6777requires_config_enabled MBEDTLS_ECDSA_C
6778requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
6779client_needs_more_time 4
6780run_test "DTLS fragmenting: 3d, gnutls client, DTLS 1.0" \
6781 -p "$P_PXY drop=8 delay=8 duplicate=8" \
6782 "$P_SRV dtls=1 debug_level=2 \
6783 crt_file=data_files/server7_int-ca.crt \
6784 key_file=data_files/server7.key \
6785 hs_timeout=250-60000 mtu=512 force_version=dtls1" \
6786 "$G_CLI -u --insecure 127.0.0.1" \
6787 0 \
6788 -s "fragmenting handshake message"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6789
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]6790## Interop test with OpenSSL might trigger a bug in recent versions (including
6791## all versions installed on the CI machines), reported here:
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6792## Bug report: https://github.com/openssl/openssl/issues/6902
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]6793## They should be re-enabled once a fixed version of OpenSSL is available
6794## (this should happen in some 1.1.1_ release according to the ticket).
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]6795skip_next_test
6796requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6797requires_config_enabled MBEDTLS_RSA_C
6798requires_config_enabled MBEDTLS_ECDSA_C
6799requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
6800client_needs_more_time 4
6801run_test "DTLS fragmenting: 3d, openssl server, DTLS 1.2" \
6802 -p "$P_PXY drop=8 delay=8 duplicate=8" \
6803 "$O_SRV -dtls1_2 -verify 10" \
6804 "$P_CLI dtls=1 debug_level=2 \
6805 crt_file=data_files/server8_int-ca2.crt \
6806 key_file=data_files/server8.key \
6807 hs_timeout=250-60000 mtu=512 force_version=dtls1_2" \
6808 0 \
6809 -c "fragmenting handshake message" \
6810 -C "error"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6811
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]6812skip_next_test
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6813requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6814requires_config_enabled MBEDTLS_RSA_C
6815requires_config_enabled MBEDTLS_ECDSA_C
6816requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6817client_needs_more_time 4
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6818run_test "DTLS fragmenting: 3d, openssl server, DTLS 1.0" \
6819 -p "$P_PXY drop=8 delay=8 duplicate=8" \
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]6820 "$O_SRV -dtls1 -verify 10" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6821 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6822 crt_file=data_files/server8_int-ca2.crt \
6823 key_file=data_files/server8.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6824 hs_timeout=250-60000 mtu=512 force_version=dtls1" \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6825 0 \
6826 -c "fragmenting handshake message" \
6827 -C "error"
6828
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]6829skip_next_test
6830requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6831requires_config_enabled MBEDTLS_RSA_C
6832requires_config_enabled MBEDTLS_ECDSA_C
6833requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
6834client_needs_more_time 4
6835run_test "DTLS fragmenting: 3d, openssl client, DTLS 1.2" \
6836 -p "$P_PXY drop=8 delay=8 duplicate=8" \
6837 "$P_SRV dtls=1 debug_level=2 \
6838 crt_file=data_files/server7_int-ca.crt \
6839 key_file=data_files/server7.key \
6840 hs_timeout=250-60000 mtu=512 force_version=dtls1_2" \
6841 "$O_CLI -dtls1_2" \
6842 0 \
6843 -s "fragmenting handshake message"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6844
6845# -nbio is added to prevent s_client from blocking in case of duplicated
6846# messages at the end of the handshake
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]6847skip_next_test
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6848requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6849requires_config_enabled MBEDTLS_RSA_C
6850requires_config_enabled MBEDTLS_ECDSA_C
6851requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6852client_needs_more_time 4
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6853run_test "DTLS fragmenting: 3d, openssl client, DTLS 1.0" \
6854 -p "$P_PXY drop=8 delay=8 duplicate=8" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6855 "$P_SRV dgram_packing=0 dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6856 crt_file=data_files/server7_int-ca.crt \
6857 key_file=data_files/server7.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]6858 hs_timeout=250-60000 mtu=512 force_version=dtls1" \
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]6859 "$O_CLI -nbio -dtls1" \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]6860 0 \
6861 -s "fragmenting handshake message"
6862
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]6863# Tests for specific things with "unreliable" UDP connection
6864
6865not_with_valgrind # spurious resend due to timeout
6866run_test "DTLS proxy: reference" \
6867 -p "$P_PXY" \
6868 "$P_SRV dtls=1 debug_level=2" \
6869 "$P_CLI dtls=1 debug_level=2" \
6870 0 \
6871 -C "replayed record" \
6872 -S "replayed record" \
6873 -C "record from another epoch" \
6874 -S "record from another epoch" \
6875 -C "discarding invalid record" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]6876 -S "discarding invalid record" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]6877 -S "resend" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]6878 -s "Extra-header:" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]6879 -c "HTTP/1.0 200 OK"
6880
6881not_with_valgrind # spurious resend due to timeout
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]6882run_test "DTLS proxy: duplicate every packet" \
6883 -p "$P_PXY duplicate=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6884 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
6885 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]6886 0 \
6887 -c "replayed record" \
6888 -s "replayed record" \
6889 -c "record from another epoch" \
6890 -s "record from another epoch" \
6891 -S "resend" \
6892 -s "Extra-header:" \
6893 -c "HTTP/1.0 200 OK"
6894
6895run_test "DTLS proxy: duplicate every packet, server anti-replay off" \
6896 -p "$P_PXY duplicate=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6897 "$P_SRV dtls=1 dgram_packing=0 debug_level=2 anti_replay=0" \
6898 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]6899 0 \
6900 -c "replayed record" \
6901 -S "replayed record" \
6902 -c "record from another epoch" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]6903 -s "record from another epoch" \
6904 -c "resend" \
6905 -s "resend" \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]6906 -s "Extra-header:" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]6907 -c "HTTP/1.0 200 OK"
6908
6909run_test "DTLS proxy: multiple records in same datagram" \
6910 -p "$P_PXY pack=50" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6911 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
6912 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]6913 0 \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]6914 -c "next record in same datagram" \
6915 -s "next record in same datagram"
6916
6917run_test "DTLS proxy: multiple records in same datagram, duplicate every packet" \
6918 -p "$P_PXY pack=50 duplicate=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6919 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
6920 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]6921 0 \
6922 -c "next record in same datagram" \
6923 -s "next record in same datagram"
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]6924
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]6925run_test "DTLS proxy: inject invalid AD record, default badmac_limit" \
6926 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6927 "$P_SRV dtls=1 dgram_packing=0 debug_level=1" \
6928 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]6929 0 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]6930 -c "discarding invalid record (mac)" \
6931 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]6932 -s "Extra-header:" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]6933 -c "HTTP/1.0 200 OK" \
6934 -S "too many records with bad MAC" \
6935 -S "Verification of the message MAC failed"
6936
6937run_test "DTLS proxy: inject invalid AD record, badmac_limit 1" \
6938 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6939 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=1" \
6940 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]6941 1 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]6942 -C "discarding invalid record (mac)" \
6943 -S "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]6944 -S "Extra-header:" \
6945 -C "HTTP/1.0 200 OK" \
6946 -s "too many records with bad MAC" \
6947 -s "Verification of the message MAC failed"
6948
6949run_test "DTLS proxy: inject invalid AD record, badmac_limit 2" \
6950 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6951 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=2" \
6952 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]6953 0 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]6954 -c "discarding invalid record (mac)" \
6955 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]6956 -s "Extra-header:" \
6957 -c "HTTP/1.0 200 OK" \
6958 -S "too many records with bad MAC" \
6959 -S "Verification of the message MAC failed"
6960
6961run_test "DTLS proxy: inject invalid AD record, badmac_limit 2, exchanges 2"\
6962 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]6963 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=2 exchanges=2" \
6964 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100 exchanges=2" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]6965 1 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]6966 -c "discarding invalid record (mac)" \
6967 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]6968 -s "Extra-header:" \
6969 -c "HTTP/1.0 200 OK" \
6970 -s "too many records with bad MAC" \
6971 -s "Verification of the message MAC failed"
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]6972
6973run_test "DTLS proxy: delay ChangeCipherSpec" \
6974 -p "$P_PXY delay_ccs=1" \
Hanno Beckerc4305232018-08-14 13:41:21 +0100[diff] [blame]6975 "$P_SRV dtls=1 debug_level=1 dgram_packing=0" \
6976 "$P_CLI dtls=1 debug_level=1 dgram_packing=0" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]6977 0 \
6978 -c "record from another epoch" \
6979 -s "record from another epoch" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]6980 -s "Extra-header:" \
6981 -c "HTTP/1.0 200 OK"
6982
Hanno Beckeraa5d0c42018-08-16 13:15:19 +0100[diff] [blame]6983# Tests for reordering support with DTLS
6984
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]6985run_test "DTLS reordering: Buffer out-of-order handshake message on client" \
6986 -p "$P_PXY delay_srv=ServerHello" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]6987 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
6988 hs_timeout=2500-60000" \
6989 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
6990 hs_timeout=2500-60000" \
Hanno Beckere3842212018-08-16 15:28:59 +0100[diff] [blame]6991 0 \
6992 -c "Buffering HS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]6993 -c "Next handshake message has been buffered - load"\
6994 -S "Buffering HS message" \
6995 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]6996 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]6997 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]6998 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]6999 -S "Remember CCS message"
Hanno Beckere3842212018-08-16 15:28:59 +0100[diff] [blame]7000
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]7001run_test "DTLS reordering: Buffer out-of-order handshake message fragment on client" \
7002 -p "$P_PXY delay_srv=ServerHello" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7003 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
7004 hs_timeout=2500-60000" \
7005 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
7006 hs_timeout=2500-60000" \
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]7007 0 \
7008 -c "Buffering HS message" \
7009 -c "found fragmented DTLS handshake message"\
7010 -c "Next handshake message 1 not or only partially bufffered" \
7011 -c "Next handshake message has been buffered - load"\
7012 -S "Buffering HS message" \
7013 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7014 -C "Injecting buffered CCS message" \
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]7015 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7016 -S "Injecting buffered CCS message" \
Hanno Beckeraa5d0c42018-08-16 13:15:19 +0100[diff] [blame]7017 -S "Remember CCS message"
7018
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]7019# The client buffers the ServerKeyExchange before receiving the fragmented
7020# Certificate message; at the time of writing, together these are aroudn 1200b
7021# in size, so that the bound below ensures that the certificate can be reassembled
7022# while keeping the ServerKeyExchange.
7023requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 1300
7024run_test "DTLS reordering: Buffer out-of-order hs msg before reassembling next" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]7025 -p "$P_PXY delay_srv=Certificate delay_srv=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7026 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
7027 hs_timeout=2500-60000" \
7028 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
7029 hs_timeout=2500-60000" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]7030 0 \
7031 -c "Buffering HS message" \
7032 -c "Next handshake message has been buffered - load"\
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]7033 -C "attempt to make space by freeing buffered messages" \
7034 -S "Buffering HS message" \
7035 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7036 -C "Injecting buffered CCS message" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]7037 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7038 -S "Injecting buffered CCS message" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]7039 -S "Remember CCS message"
7040
7041# The size constraints ensure that the delayed certificate message can't
7042# be reassembled while keeping the ServerKeyExchange message, but it can
7043# when dropping it first.
7044requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 900
7045requires_config_value_at_most "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 1299
7046run_test "DTLS reordering: Buffer out-of-order hs msg before reassembling next, free buffered msg" \
7047 -p "$P_PXY delay_srv=Certificate delay_srv=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7048 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
7049 hs_timeout=2500-60000" \
7050 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
7051 hs_timeout=2500-60000" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]7052 0 \
7053 -c "Buffering HS message" \
7054 -c "attempt to make space by freeing buffered future messages" \
7055 -c "Enough space available after freeing buffered HS messages" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]7056 -S "Buffering HS message" \
7057 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7058 -C "Injecting buffered CCS message" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]7059 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7060 -S "Injecting buffered CCS message" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]7061 -S "Remember CCS message"
7062
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7063run_test "DTLS reordering: Buffer out-of-order handshake message on server" \
7064 -p "$P_PXY delay_cli=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7065 "$P_SRV dgram_packing=0 auth_mode=required cookies=0 dtls=1 debug_level=2 \
7066 hs_timeout=2500-60000" \
7067 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
7068 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7069 0 \
7070 -C "Buffering HS message" \
7071 -C "Next handshake message has been buffered - load"\
7072 -s "Buffering HS message" \
7073 -s "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7074 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7075 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7076 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7077 -S "Remember CCS message"
7078
7079run_test "DTLS reordering: Buffer out-of-order CCS message on client"\
7080 -p "$P_PXY delay_srv=NewSessionTicket" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7081 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
7082 hs_timeout=2500-60000" \
7083 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
7084 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7085 0 \
7086 -C "Buffering HS message" \
7087 -C "Next handshake message has been buffered - load"\
7088 -S "Buffering HS message" \
7089 -S "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7090 -c "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7091 -c "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7092 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7093 -S "Remember CCS message"
7094
7095run_test "DTLS reordering: Buffer out-of-order CCS message on server"\
7096 -p "$P_PXY delay_cli=ClientKeyExchange" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7097 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
7098 hs_timeout=2500-60000" \
7099 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
7100 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7101 0 \
7102 -C "Buffering HS message" \
7103 -C "Next handshake message has been buffered - load"\
7104 -S "Buffering HS message" \
7105 -S "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7106 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7107 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]7108 -s "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7109 -s "Remember CCS message"
7110
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]7111run_test "DTLS reordering: Buffer encrypted Finished message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7112 -p "$P_PXY delay_ccs=1" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7113 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
7114 hs_timeout=2500-60000" \
7115 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
7116 hs_timeout=2500-60000" \
Hanno Beckerb34149c2018-08-16 15:29:06 +0100[diff] [blame]7117 0 \
7118 -s "Buffer record from epoch 1" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]7119 -s "Found buffered record from current epoch - load" \
7120 -c "Buffer record from epoch 1" \
7121 -c "Found buffered record from current epoch - load"
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7122
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]7123# In this test, both the fragmented NewSessionTicket and the ChangeCipherSpec
7124# from the server are delayed, so that the encrypted Finished message
7125# is received and buffered. When the fragmented NewSessionTicket comes
7126# in afterwards, the encrypted Finished message must be freed in order
7127# to make space for the NewSessionTicket to be reassembled.
7128# This works only in very particular circumstances:
7129# - MBEDTLS_SSL_DTLS_MAX_BUFFERING must be large enough to allow buffering
7130# of the NewSessionTicket, but small enough to also allow buffering of
7131# the encrypted Finished message.
7132# - The MTU setting on the server must be so small that the NewSessionTicket
7133# needs to be fragmented.
7134# - All messages sent by the server must be small enough to be either sent
7135# without fragmentation or be reassembled within the bounds of
7136# MBEDTLS_SSL_DTLS_MAX_BUFFERING. Achieve this by testing with a PSK-based
7137# handshake, omitting CRTs.
7138requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 240
7139requires_config_value_at_most "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 280
7140run_test "DTLS reordering: Buffer encrypted Finished message, drop for fragmented NewSessionTicket" \
7141 -p "$P_PXY delay_srv=NewSessionTicket delay_srv=NewSessionTicket delay_ccs=1" \
7142 "$P_SRV mtu=190 dgram_packing=0 psk=abc123 psk_identity=foo cookies=0 dtls=1 debug_level=2" \
7143 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8 psk=abc123 psk_identity=foo" \
7144 0 \
7145 -s "Buffer record from epoch 1" \
7146 -s "Found buffered record from current epoch - load" \
7147 -c "Buffer record from epoch 1" \
7148 -C "Found buffered record from current epoch - load" \
7149 -c "Enough space available after freeing future epoch record"
7150
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]7151# Tests for "randomly unreliable connection": try a variety of flows and peers
7152
7153client_needs_more_time 2
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]7154run_test "DTLS proxy: 3d (drop, delay, duplicate), \"short\" PSK handshake" \
7155 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7156 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7157 psk=abc123" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7158 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7159 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
7160 0 \
7161 -s "Extra-header:" \
7162 -c "HTTP/1.0 200 OK"
7163
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7164client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7165run_test "DTLS proxy: 3d, \"short\" RSA handshake" \
7166 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7167 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none" \
7168 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7169 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
7170 0 \
7171 -s "Extra-header:" \
7172 -c "HTTP/1.0 200 OK"
7173
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7174client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7175run_test "DTLS proxy: 3d, \"short\" (no ticket, no cli_auth) FS handshake" \
7176 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7177 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none" \
7178 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7179 0 \
7180 -s "Extra-header:" \
7181 -c "HTTP/1.0 200 OK"
7182
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7183client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7184run_test "DTLS proxy: 3d, FS, client auth" \
7185 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7186 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=required" \
7187 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7188 0 \
7189 -s "Extra-header:" \
7190 -c "HTTP/1.0 200 OK"
7191
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7192client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7193run_test "DTLS proxy: 3d, FS, ticket" \
7194 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7195 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1 auth_mode=none" \
7196 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7197 0 \
7198 -s "Extra-header:" \
7199 -c "HTTP/1.0 200 OK"
7200
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7201client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]7202run_test "DTLS proxy: 3d, max handshake (FS, ticket + client auth)" \
7203 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7204 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1 auth_mode=required" \
7205 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]7206 0 \
7207 -s "Extra-header:" \
7208 -c "HTTP/1.0 200 OK"
7209
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7210client_needs_more_time 2
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]7211run_test "DTLS proxy: 3d, max handshake, nbio" \
7212 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7213 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 nbio=2 tickets=1 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]7214 auth_mode=required" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7215 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 nbio=2 tickets=1" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]7216 0 \
7217 -s "Extra-header:" \
7218 -c "HTTP/1.0 200 OK"
7219
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7220client_needs_more_time 4
Manuel Pégourié-Gonnard7a26d732014-10-02 14:50:46 +0200[diff] [blame]7221run_test "DTLS proxy: 3d, min handshake, resumption" \
7222 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7223 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnard7a26d732014-10-02 14:50:46 +0200[diff] [blame]7224 psk=abc123 debug_level=3" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7225 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnard7a26d732014-10-02 14:50:46 +0200[diff] [blame]7226 debug_level=3 reconnect=1 read_timeout=1000 max_resend=10 \
7227 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
7228 0 \
7229 -s "a session has been resumed" \
7230 -c "a session has been resumed" \
7231 -s "Extra-header:" \
7232 -c "HTTP/1.0 200 OK"
7233
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7234client_needs_more_time 4
Manuel Pégourié-Gonnard85beb302014-10-02 17:59:19 +0200[diff] [blame]7235run_test "DTLS proxy: 3d, min handshake, resumption, nbio" \
7236 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7237 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnard85beb302014-10-02 17:59:19 +0200[diff] [blame]7238 psk=abc123 debug_level=3 nbio=2" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7239 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnard85beb302014-10-02 17:59:19 +0200[diff] [blame]7240 debug_level=3 reconnect=1 read_timeout=1000 max_resend=10 \
7241 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8 nbio=2" \
7242 0 \
7243 -s "a session has been resumed" \
7244 -c "a session has been resumed" \
7245 -s "Extra-header:" \
7246 -c "HTTP/1.0 200 OK"
7247
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7248client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]7249requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]7250run_test "DTLS proxy: 3d, min handshake, client-initiated renego" \
Manuel Pégourié-Gonnard1b753f12014-09-25 16:09:36 +0200[diff] [blame]7251 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7252 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]7253 psk=abc123 renegotiation=1 debug_level=2" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7254 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]7255 renegotiate=1 debug_level=2 \
Manuel Pégourié-Gonnard1b753f12014-09-25 16:09:36 +0200[diff] [blame]7256 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
7257 0 \
7258 -c "=> renegotiate" \
7259 -s "=> renegotiate" \
7260 -s "Extra-header:" \
7261 -c "HTTP/1.0 200 OK"
7262
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7263client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]7264requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]7265run_test "DTLS proxy: 3d, min handshake, client-initiated renego, nbio" \
7266 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7267 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]7268 psk=abc123 renegotiation=1 debug_level=2" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7269 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]7270 renegotiate=1 debug_level=2 \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]7271 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
7272 0 \
7273 -c "=> renegotiate" \
7274 -s "=> renegotiate" \
7275 -s "Extra-header:" \
7276 -c "HTTP/1.0 200 OK"
7277
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7278client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]7279requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]7280run_test "DTLS proxy: 3d, min handshake, server-initiated renego" \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]7281 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7282 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]7283 psk=abc123 renegotiate=1 renegotiation=1 exchanges=4 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]7284 debug_level=2" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7285 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]7286 renegotiation=1 exchanges=4 debug_level=2 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]7287 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
7288 0 \
7289 -c "=> renegotiate" \
7290 -s "=> renegotiate" \
7291 -s "Extra-header:" \
7292 -c "HTTP/1.0 200 OK"
7293
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7294client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]7295requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]7296run_test "DTLS proxy: 3d, min handshake, server-initiated renego, nbio" \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]7297 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7298 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]7299 psk=abc123 renegotiate=1 renegotiation=1 exchanges=4 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]7300 debug_level=2 nbio=2" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7301 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]7302 renegotiation=1 exchanges=4 debug_level=2 nbio=2 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]7303 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
7304 0 \
7305 -c "=> renegotiate" \
7306 -s "=> renegotiate" \
7307 -s "Extra-header:" \
7308 -c "HTTP/1.0 200 OK"
7309
Manuel Pégourié-Gonnard82986c12018-09-03 10:50:21 +0200[diff] [blame]7310## Interop tests with OpenSSL might trigger a bug in recent versions (including
7311## all versions installed on the CI machines), reported here:
7312## Bug report: https://github.com/openssl/openssl/issues/6902
7313## They should be re-enabled once a fixed version of OpenSSL is available
7314## (this should happen in some 1.1.1_ release according to the ticket).
7315skip_next_test
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7316client_needs_more_time 6
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]7317not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]7318run_test "DTLS proxy: 3d, openssl server" \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]7319 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
7320 "$O_SRV -dtls1 -mtu 2048" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7321 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 tickets=0" \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]7322 0 \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]7323 -c "HTTP/1.0 200 OK"
7324
Manuel Pégourié-Gonnard82986c12018-09-03 10:50:21 +0200[diff] [blame]7325skip_next_test # see above
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7326client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]7327not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]7328run_test "DTLS proxy: 3d, openssl server, fragmentation" \
7329 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
7330 "$O_SRV -dtls1 -mtu 768" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7331 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 tickets=0" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]7332 0 \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]7333 -c "HTTP/1.0 200 OK"
7334
Manuel Pégourié-Gonnard82986c12018-09-03 10:50:21 +0200[diff] [blame]7335skip_next_test # see above
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7336client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]7337not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]7338run_test "DTLS proxy: 3d, openssl server, fragmentation, nbio" \
7339 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
7340 "$O_SRV -dtls1 -mtu 768" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7341 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 nbio=2 tickets=0" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]7342 0 \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]7343 -c "HTTP/1.0 200 OK"
7344
Manuel Pégourié-Gonnard96999962015-02-17 16:02:37 +0000[diff] [blame]7345requires_gnutls
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7346client_needs_more_time 6
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]7347not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]7348run_test "DTLS proxy: 3d, gnutls server" \
7349 -p "$P_PXY drop=5 delay=5 duplicate=5" \
7350 "$G_SRV -u --mtu 2048 -a" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7351 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]7352 0 \
7353 -s "Extra-header:" \
7354 -c "Extra-header:"
7355
Manuel Pégourié-Gonnard96999962015-02-17 16:02:37 +0000[diff] [blame]7356requires_gnutls
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7357client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]7358not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]7359run_test "DTLS proxy: 3d, gnutls server, fragmentation" \
7360 -p "$P_PXY drop=5 delay=5 duplicate=5" \
7361 "$G_SRV -u --mtu 512" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7362 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]7363 0 \
7364 -s "Extra-header:" \
7365 -c "Extra-header:"
7366
Manuel Pégourié-Gonnard96999962015-02-17 16:02:37 +0000[diff] [blame]7367requires_gnutls
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]7368client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]7369not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]7370run_test "DTLS proxy: 3d, gnutls server, fragmentation, nbio" \
7371 -p "$P_PXY drop=5 delay=5 duplicate=5" \
7372 "$G_SRV -u --mtu 512" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]7373 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 nbio=2" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]7374 0 \
7375 -s "Extra-header:" \
7376 -c "Extra-header:"
7377
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]7378# Final report
7379
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]7380echo "------------------------------------------------------------------------"
7381
7382if [ $FAILS = 0 ]; then
Manuel Pégourié-Gonnardf46f1282014-12-11 11:51:28 +0100[diff] [blame]7383 printf "PASSED"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]7384else
Manuel Pégourié-Gonnardf46f1282014-12-11 11:51:28 +0100[diff] [blame]7385 printf "FAILED"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]7386fi
Manuel Pégourié-Gonnard72e51ee2014-08-31 10:22:11 +0200[diff] [blame]7387PASSES=$(( $TESTS - $FAILS ))
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]7388echo " ($PASSES / $TESTS tests ($SKIPS skipped))"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]7389
7390exit $FAILS