TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 398cb514e2cbdf7a08ba6a81200da7694b1d6f55 / . / tests / compat.sh
blob: 0495ad38245e980a2f179d306a3cb1d62faadaf1 [file] [log] [blame]
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]1killall -q openssl ssl_server
2
Paul Bakker398cb512012-04-10 08:22:31 +0000[diff] [blame^]3#MODES="ssl2 ssl3 tls1 tls1_1 tls1_2"
4MODES=tls1_2
5
6for MODE in $MODES;
7do
8echo "Running for $MODE"
9echo "-----------"
10
11openssl s_server -cert data_files/server2.crt -key data_files/server2.key -www -quiet -cipher NULL,ALL -$MODE &
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]12PROCESS_ID=$!
13
14sleep 1
15
16CIPHERS=" \
17 SSL-EDH-RSA-AES-128-SHA \
18 SSL-EDH-RSA-AES-256-SHA \
19 SSL-EDH-RSA-CAMELLIA-128-SHA \
20 SSL-EDH-RSA-CAMELLIA-256-SHA \
21 SSL-EDH-RSA-DES-168-SHA \
22 SSL-RSA-AES-256-SHA \
23 SSL-RSA-CAMELLIA-256-SHA \
24 SSL-RSA-AES-128-SHA \
25 SSL-RSA-CAMELLIA-128-SHA \
26 SSL-RSA-DES-168-SHA \
27 SSL-RSA-RC4-128-SHA \
28 SSL-RSA-RC4-128-MD5 \
29 SSL-RSA-NULL-MD5 \
30 SSL-RSA-NULL-SHA \
31 SSL-RSA-DES-SHA \
32 SSL-EDH-RSA-DES-SHA \
33 "
34
35# Not supported by OpenSSL: SSL-RSA-NULL-SHA256
36for i in $CIPHERS;
37do
38 RESULT="$( ../programs/ssl/ssl_client2 force_ciphersuite=$i )"
39 EXIT=$?
40 echo -n "OpenSSL Server - PolarSSL Client - $i : $EXIT - "
41 if [ "$EXIT" = "2" ];
42 then
43 echo Ciphersuite not supported in client
44 elif [ "$EXIT" != "0" ];
45 then
46 echo Failed
47 echo $RESULT
48 else
49 echo Success
50 fi
51done
52kill $PROCESS_ID
53
54../programs/ssl/ssl_server > /dev/null &
55PROCESS_ID=$!
56
57sleep 1
58
59CIPHERS=" \
60 DHE-RSA-AES128-SHA \
61 DHE-RSA-AES256-SHA \
62 DHE-RSA-CAMELLIA128-SHA \
63 DHE-RSA-CAMELLIA256-SHA \
64 EDH-RSA-DES-CBC3-SHA \
65 AES256-SHA \
66 CAMELLIA256-SHA \
67 AES128-SHA \
68 CAMELLIA128-SHA \
69 DES-CBC3-SHA \
70 RC4-SHA \
71 RC4-MD5 \
72 NULL-MD5 \
73 NULL-SHA \
74 DES-CBC-SHA \
75 EDH-RSA-DES-CBC-SHA \
76 "
77
78# Not supported by OpenSSL: NULL-SHA256
79for i in $CIPHERS;
80do
Paul Bakker398cb512012-04-10 08:22:31 +0000[diff] [blame^]81 RESULT="$( ( echo -e 'GET HTTP/1.0'; echo; sleep 1 ) | openssl s_client -$MODE -cipher $i 2>&1)"
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]82 EXIT=$?
83 echo -n "PolarSSL Server - OpenSSL Client - $i : $EXIT - "
84
85 if [ "$EXIT" != "0" ];
86 then
87 SUPPORTED="$( echo $RESULT | grep 'Cipher is (NONE)' )"
88 if [ "X$SUPPORTED" != "X" ]
89 then
90 echo "Ciphersuite not supported in server"
91 else
92 echo Failed
93 echo $RESULT
94 fi
95 else
96 echo Success
97 fi
98done
99
100kill $PROCESS_ID
101
102../programs/ssl/ssl_server > /dev/null &
103PROCESS_ID=$!
104
105sleep 1
106
107CIPHERS=" \
108 SSL-RSA-RC4-128-SHA \
109 SSL-RSA-NULL-MD5 \
110 SSL-EDH-RSA-AES-128-SHA \
111 SSL-EDH-RSA-AES-256-SHA \
112 SSL-EDH-RSA-CAMELLIA-128-SHA \
113 SSL-EDH-RSA-CAMELLIA-256-SHA \
114 SSL-EDH-RSA-DES-168-SHA \
115 SSL-RSA-NULL-SHA \
116 SSL-RSA-AES-256-SHA \
117 SSL-RSA-CAMELLIA-256-SHA \
118 SSL-RSA-AES-128-SHA \
119 SSL-RSA-CAMELLIA-128-SHA \
120 SSL-RSA-DES-168-SHA \
121 SSL-RSA-RC4-128-MD5 \
122 SSL-RSA-DES-SHA \
123 SSL-EDH-RSA-DES-SHA \
124 SSL-RSA-NULL-SHA256 \
125 "
126
127for i in $CIPHERS;
128do
129 RESULT="$( ../programs/ssl/ssl_client2 force_ciphersuite=$i )"
130 EXIT=$?
131 echo -n "PolarSSL Server - PolarSSL Client - $i : $EXIT - "
132 if [ "$EXIT" = "2" ];
133 then
134 echo Ciphersuite not supported in client
135 elif [ "$EXIT" != "0" ];
136 then
137 echo Failed
138 echo $RESULT
139 else
140 echo Success
141 fi
142done
143kill $PROCESS_ID
144
Paul Bakker398cb512012-04-10 08:22:31 +0000[diff] [blame^]145done
146