commit 12cf38885655faffd83b9292c499a87ab468652b
author Minos Galanakis <minos.galanakis@arm.com> Thu Mar 06 15:19:53 2025 +0000
committer Minos Galanakis <minos.galanakis@arm.com> Fri Mar 14 00:10:10 2025 +0000
tree 4815a4f870af92fba43df7b6393f3c9fe8354422
parent a37a936beb467149add764092690b6c2451bd1ad

Added Mock Renegotiation negative test for testing.

Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>

tests/ssl-opt.sh

diff --git a/tests/ssl-opt.sh b/tests/ssl-opt.sh
index 2acf33c..0dd40e8 100755
--- a/tests/ssl-opt.sh
+++ b/tests/ssl-opt.sh
@@ -14559,6 +14559,22 @@
             -c "found renegotiation extension" \
             -c "=> renegotiate"
 
+# Mock negative test to demonstrate the failure with n-bit sized fragments, where ClientHello < n.
+requires_openssl_3_x
+requires_protocol_version tls12
+requires_certificate_authentication
+requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
+run_test    "Handshake defragmentation mock with server-initiated renegotation: len=256 renego_delay=default(16)" \
+            "$O_NEXT_SRV -tls1_2 -split_send_frag 256 -legacy_renegotiation -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
+            "$P_CLI debug_level=3 renegotiation=1 request_page=/reneg" \
+            1 \
+            -c "initial handshake fragment: 256, 0..256 of [0-9]\\+" \
+            -c "Prepare: waiting for more handshake fragments 256/[0-9]\\+" \
+            -c "Consume: waiting for more handshake fragments 256/[0-9]\\+" \
+            -c "client hello, adding renegotiation extension" \
+            -c "found renegotiation extension" \
+            -c "renegotiation requested, but not honored by server"
+
 # Test heap memory usage after handshake
 requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
 requires_config_enabled MBEDTLS_MEMORY_DEBUG