Blame - tests/suites/test_suite_ssl.function - mirror/mbed-tls

2020-02-26 09:10:14 -0500

[diff] [blame]

5292

void app_data_dtls( int mfl, int cli_msg_len, int srv_msg_len,

5293

int expected_cli_fragments,

5294

int expected_srv_fragments )

5295

{

5296

test_app_data( mfl, cli_msg_len, srv_msg_len, expected_cli_fragments,

5297

expected_srv_fragments, 1 );

5298

/* The goto below is used to avoid an "unused label" warning.*/

5299

goto exit;

5300

}

5301

/* END_CASE */

Andrzej Kurek

2020-02-12 07:56:36 -0500

[diff] [blame]

5302

Andrzej Kurek

2022-08-17 15:20:40 -0400

[diff] [blame]

5303

/* BEGIN_CASE depends_on:MBEDTLS_X509_CRT_PARSE_C:!MBEDTLS_SSL_PROTO_TLS1_3:MBEDTLS_PKCS1_V15:MBEDTLS_SSL_PROTO_TLS1_2:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_SSL_PROTO_DTLS:MBEDTLS_SSL_RENEGOTIATION:MBEDTLS_SSL_CONTEXT_SERIALIZATION */

Andrzej Kurek

2020-02-26 09:10:14 -0500

[diff] [blame]

5304

void handshake_serialization( )

5305

{

5306

handshake_test_options options;

5307

init_handshake_options( &options );

Andrzej Kurek

2020-02-12 07:56:36 -0500

[diff] [blame]

5308

Andrzej Kurek

2020-02-26 09:10:14 -0500

[diff] [blame]

5309

options.serialize = 1;

5310

options.dtls = 1;

5311

perform_handshake( &options );

5312

/* The goto below is used to avoid an "unused label" warning.*/

5313

goto exit;

Andrzej Kurek

6e518ab

2022-06-11 05:08:38 -0400

[diff] [blame]

5314

exit:

5315

free_handshake_options( &options );

Andrzej Kurek

2020-02-26 09:10:14 -0500

[diff] [blame]

5316

}

5317

/* END_CASE */

Andrzej Kurek

2020-02-12 07:56:36 -0500

[diff] [blame]

5318

Andrzej Kurek

2022-08-17 15:20:40 -0400

[diff] [blame]

5319

/* BEGIN_CASE depends_on:MBEDTLS_X509_CRT_PARSE_C:!MBEDTLS_SSL_PROTO_TLS1_3:MBEDTLS_PKCS1_V15:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_DEBUG_C:MBEDTLS_SSL_MAX_FRAGMENT_LENGTH:MBEDTLS_CIPHER_MODE_CBC */

Piotr Nowicki

bde7ee8

2020-02-21 10:59:50 +0100

[diff] [blame]

5320

void handshake_fragmentation( int mfl, int expected_srv_hs_fragmentation, int expected_cli_hs_fragmentation)

5321

{

5322

handshake_test_options options;

5323

log_pattern srv_pattern, cli_pattern;

5324

5325

srv_pattern.pattern = cli_pattern.pattern = "found fragmented DTLS handshake";

5326

srv_pattern.counter = 0;

5327

cli_pattern.counter = 0;

5328

5329

init_handshake_options( &options );

5330

options.dtls = 1;

5331

options.mfl = mfl;

Darryl Green

aad82f9

2019-12-02 10:53:11 +0000

[diff] [blame]

5332

/* Set cipher to one using CBC so that record splitting can be tested */

5333

options.cipher = "TLS-DHE-RSA-WITH-AES-256-CBC-SHA256";

Piotr Nowicki

bde7ee8

2020-02-21 10:59:50 +0100

[diff] [blame]

5334

options.srv_auth_mode = MBEDTLS_SSL_VERIFY_REQUIRED;

5335

options.srv_log_obj = &srv_pattern;

5336

options.cli_log_obj = &cli_pattern;

5337

options.srv_log_fun = log_analyzer;

5338

options.cli_log_fun = log_analyzer;

5339

5340

perform_handshake( &options );

5341

5342

/* Test if the server received a fragmented handshake */

5343

if( expected_srv_hs_fragmentation )

5344

{

5345

TEST_ASSERT( srv_pattern.counter >= 1 );

5346

}

5347

/* Test if the client received a fragmented handshake */

5348

if( expected_cli_hs_fragmentation )

5349

{

5350

TEST_ASSERT( cli_pattern.counter >= 1 );

5351

}

Andrzej Kurek

2022-06-10 08:57:19 -0400

[diff] [blame]

5352

5353

exit:

5354

free_handshake_options( &options );

Piotr Nowicki

bde7ee8

2020-02-21 10:59:50 +0100

[diff] [blame]

}

/* END_CASE */

Andrzej Kurek

2022-08-17 15:20:40 -0400

[diff] [blame]

5358

/* BEGIN_CASE depends_on:MBEDTLS_X509_CRT_PARSE_C:!MBEDTLS_SSL_PROTO_TLS1_3:MBEDTLS_PKCS1_V15:MBEDTLS_SSL_PROTO_TLS1_2:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_SSL_PROTO_DTLS:MBEDTLS_SSL_RENEGOTIATION */

Andrzej Kurek

2020-02-26 09:10:14 -0500

[diff] [blame]

5359

void renegotiation( int legacy_renegotiation )

5360

{

5361

handshake_test_options options;

5362

init_handshake_options( &options );

Andrzej Kurek

2020-02-12 07:56:36 -0500

[diff] [blame]

5363

Andrzej Kurek

2020-02-26 09:10:14 -0500

[diff] [blame]

5364

options.renegotiate = 1;

5365

options.legacy_renegotiation = legacy_renegotiation;

5366

options.dtls = 1;

Andrzej Kurek

316da1f

2020-02-26 09:03:47 -0500

[diff] [blame]

5367

Andrzej Kurek

2020-02-26 09:10:14 -0500

[diff] [blame]

5368

perform_handshake( &options );

Andrzej Kurek

2022-06-10 08:57:19 -0400

[diff] [blame]

5369

Andrzej Kurek

2020-02-26 09:10:14 -0500

[diff] [blame]

5370

/* The goto below is used to avoid an "unused label" warning.*/

5371

goto exit;

Andrzej Kurek

ddb8cd6

2022-07-04 16:07:28 -0400

[diff] [blame]

5372

exit:

5373

free_handshake_options( &options );

Andrzej Kurek

f40daa3

2020-02-04 09:00:01 -0500

[diff] [blame]

5374

}

5375

/* END_CASE */

Andrzej Kurek

2020-03-03 10:39:58 -0500

[diff] [blame]

5376

Andrzej Kurek

2022-08-17 15:20:40 -0400

[diff] [blame]

5377

/* BEGIN_CASE depends_on:MBEDTLS_X509_CRT_PARSE_C:!MBEDTLS_SSL_PROTO_TLS1_3:MBEDTLS_PKCS1_V15:MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH:MBEDTLS_SSL_PROTO_TLS1_2:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP384R1_ENABLED */

Andrzej Kurek

2020-03-03 10:39:58 -0500

[diff] [blame]

5378

void resize_buffers( int mfl, int renegotiation, int legacy_renegotiation,

Andrzej Kurek

2020-04-03 06:40:47 -0400

[diff] [blame]

5379

int serialize, int dtls, char *cipher )

Andrzej Kurek

2020-03-03 10:39:58 -0500

[diff] [blame]

5380

{

5381

handshake_test_options options;

5382

init_handshake_options( &options );

5383

5384

options.mfl = mfl;

Andrzej Kurek

2020-04-03 06:40:47 -0400

[diff] [blame]

5385

options.cipher = cipher;

Andrzej Kurek

2020-03-03 10:39:58 -0500

[diff] [blame]

5386

options.renegotiate = renegotiation;

5387

options.legacy_renegotiation = legacy_renegotiation;

5388

options.serialize = serialize;

5389

options.dtls = dtls;

5390

options.resize_buffers = 1;

5391

5392

perform_handshake( &options );

Andrzej Kurek

2022-06-10 08:57:19 -0400

[diff] [blame]

5393

Andrzej Kurek

2020-03-03 10:39:58 -0500

[diff] [blame]

5394

/* The goto below is used to avoid an "unused label" warning.*/

5395

goto exit;

Andrzej Kurek

2022-06-10 08:57:19 -0400

[diff] [blame]

5396

exit:

5397

free_handshake_options( &options );

Andrzej Kurek

2020-03-03 10:39:58 -0500

[diff] [blame]

}

/* END_CASE */

Andrzej Kurek

2022-08-17 15:20:40 -0400

[diff] [blame]

5401

/* BEGIN_CASE depends_on:MBEDTLS_X509_CRT_PARSE_C:!MBEDTLS_SSL_PROTO_TLS1_3:MBEDTLS_PKCS1_V15:MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH:MBEDTLS_SSL_CONTEXT_SERIALIZATION:MBEDTLS_SSL_PROTO_TLS1_2:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_SSL_PROTO_DTLS */

Andrzej Kurek

2020-03-03 10:39:58 -0500

[diff] [blame]

5402

void resize_buffers_serialize_mfl( int mfl )

5403

{

Andrzej Kurek

2020-04-03 06:40:47 -0400

[diff] [blame]

5404

test_resize_buffers( mfl, 0, MBEDTLS_SSL_LEGACY_NO_RENEGOTIATION, 1, 1,

5405

(char *) "" );

Andrzej Kurek

2020-03-03 10:39:58 -0500

[diff] [blame]

5406

5407

/* The goto below is used to avoid an "unused label" warning.*/

goto exit;

}

/* END_CASE */

Andrzej Kurek

2022-08-17 15:20:40 -0400

[diff] [blame]

5412

/* BEGIN_CASE depends_on:MBEDTLS_X509_CRT_PARSE_C:!MBEDTLS_SSL_PROTO_TLS1_3:MBEDTLS_PKCS1_V15:MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH:MBEDTLS_SSL_RENEGOTIATION:MBEDTLS_SSL_PROTO_TLS1_2:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP384R1_ENABLED */

Andrzej Kurek

2020-04-03 06:40:47 -0400

[diff] [blame]

5413

void resize_buffers_renegotiate_mfl( int mfl, int legacy_renegotiation,

5414

char *cipher )

Andrzej Kurek

2020-03-03 10:39:58 -0500

[diff] [blame]

5415

{

Andrzej Kurek

2020-04-03 06:40:47 -0400

[diff] [blame]

5416

test_resize_buffers( mfl, 1, legacy_renegotiation, 0, 1, cipher );

Andrzej Kurek

2020-03-03 10:39:58 -0500

[diff] [blame]

5417

5418

/* The goto below is used to avoid an "unused label" warning.*/

5419

goto exit;

5420

}

5421

/* END_CASE */

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5422

Manuel Pégourié-Gonnard

ed0e864

2020-07-21 11:20:30 +0200

[diff] [blame]

5423

/* BEGIN_CASE depends_on:MBEDTLS_SSL_SOME_SUITES_USE_TLS_CBC:MBEDTLS_TEST_HOOKS */

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5424

void ssl_cf_hmac( int hash )

5425

{

5426

/*

Gabor Mezei

90437e3

2021-10-20 11:59:27 +0200

[diff] [blame]

5427

* Test the function mbedtls_ct_hmac() against a reference

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5428

* implementation.

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5429

*/

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5430

#if defined(MBEDTLS_USE_PSA_CRYPTO)

5431

mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;

5432

psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;

5433

psa_algorithm_t alg;

5434

psa_mac_operation_t operation = PSA_MAC_OPERATION_INIT;

5435

#else

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5436

mbedtls_md_context_t ctx, ref_ctx;

5437

const mbedtls_md_info_t *md_info;

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5438

#endif /* MBEDTLS_USE_PSA_CRYPTO */

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5439

size_t out_len, block_size;

5440

size_t min_in_len, in_len, max_in_len, i;

5441

/* TLS additional data is 13 bytes (hence the "lucky 13" name) */

5442

unsigned char add_data[13];

Manuel Pégourié-Gonnard

1367f40

2022-09-19 11:00:23 +0200

[diff] [blame]

5443

unsigned char ref_out[MBEDTLS_HASH_MAX_SIZE];

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5444

unsigned char *data = NULL;

5445

unsigned char *out = NULL;

5446

unsigned char rec_num = 0;

5447

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5448

USE_PSA_INIT( );

5449

5450

#if defined(MBEDTLS_USE_PSA_CRYPTO)

Manuel Pégourié-Gonnard

abac037

2022-07-18 13:41:11 +0200

[diff] [blame]

5451

alg = PSA_ALG_HMAC( mbedtls_hash_info_psa_from_md( hash ) );

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5452

5453

out_len = PSA_HASH_LENGTH( alg );

5454

block_size = PSA_HASH_BLOCK_LENGTH( alg );

5455

5456

/* mbedtls_ct_hmac() requires the key to be exportable */

5457

psa_set_key_usage_flags( &attributes, PSA_KEY_USAGE_EXPORT |

5458

PSA_KEY_USAGE_VERIFY_HASH );

5459

psa_set_key_algorithm( &attributes, PSA_ALG_HMAC( alg ) );

5460

psa_set_key_type( &attributes, PSA_KEY_TYPE_HMAC );

5461

#else

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5462

mbedtls_md_init( &ctx );

5463

mbedtls_md_init( &ref_ctx );

5464

5465

md_info = mbedtls_md_info_from_type( hash );

5466

TEST_ASSERT( md_info != NULL );

5467

out_len = mbedtls_md_get_size( md_info );

5468

TEST_ASSERT( out_len != 0 );

5469

block_size = hash == MBEDTLS_MD_SHA384 ? 128 : 64;

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5470

#endif /* MBEDTLS_USE_PSA_CRYPTO */

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5471

5472

/* Use allocated out buffer to catch overwrites */

5473

ASSERT_ALLOC( out, out_len );

5474

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5475

#if defined(MBEDTLS_USE_PSA_CRYPTO)

5476

/* Set up dummy key */

5477

memset( ref_out, 42, sizeof( ref_out ) );

5478

TEST_EQUAL( PSA_SUCCESS, psa_import_key( &attributes,

5479

ref_out, out_len,

5480

&key ) );

5481

#else

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5482

/* Set up contexts with the given hash and a dummy key */

5483

TEST_EQUAL( 0, mbedtls_md_setup( &ctx, md_info, 1 ) );

5484

TEST_EQUAL( 0, mbedtls_md_setup( &ref_ctx, md_info, 1 ) );

5485

memset( ref_out, 42, sizeof( ref_out ) );

5486

TEST_EQUAL( 0, mbedtls_md_hmac_starts( &ctx, ref_out, out_len ) );

5487

TEST_EQUAL( 0, mbedtls_md_hmac_starts( &ref_ctx, ref_out, out_len ) );

5488

memset( ref_out, 0, sizeof( ref_out ) );

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5489

#endif

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5490

5491

/*

5492

* Test all possible lengths up to a point. The difference between

5493

* max_in_len and min_in_len is at most 255, and make sure they both vary

5494

* by at least one block size.

5495

*/

5496

for( max_in_len = 0; max_in_len <= 255 + block_size; max_in_len++ )

5497

{

Chris Jones

9634bb1

2021-01-20 15:56:42 +0000

[diff] [blame]

5498

mbedtls_test_set_step( max_in_len * 10000 );

Manuel Pégourié-Gonnard

ca8287c

2020-07-22 10:29:39 +0200

[diff] [blame]

5499

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5500

/* Use allocated in buffer to catch overreads */

Manuel Pégourié-Gonnard

c321900

2020-07-22 10:32:52 +0200

[diff] [blame]

5501

ASSERT_ALLOC( data, max_in_len );

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5502

5503

min_in_len = max_in_len > 255 ? max_in_len - 255 : 0;

5504

for( in_len = min_in_len; in_len <= max_in_len; in_len++ )

5505

{

Chris Jones

9634bb1

2021-01-20 15:56:42 +0000

[diff] [blame]

5506

mbedtls_test_set_step( max_in_len * 10000 + in_len );

Manuel Pégourié-Gonnard

ca8287c

2020-07-22 10:29:39 +0200

[diff] [blame]

5507

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5508

/* Set up dummy data and add_data */

5509

rec_num++;

5510

memset( add_data, rec_num, sizeof( add_data ) );

5511

for( i = 0; i < in_len; i++ )

5512

data[i] = ( i & 0xff ) ^ rec_num;

5513

5514

/* Get the function's result */

Manuel Pégourié-Gonnard

9670a59

2020-07-10 10:21:46 +0200

[diff] [blame]

5515

TEST_CF_SECRET( &in_len, sizeof( in_len ) );

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5516

#if defined(MBEDTLS_USE_PSA_CRYPTO)

5517

TEST_EQUAL( 0, mbedtls_ct_hmac( key, PSA_ALG_HMAC( alg ),

5518

add_data, sizeof( add_data ),

5519

data, in_len,

5520

min_in_len, max_in_len,

5521

out ) );

5522

#else

Gabor Mezei

90437e3

2021-10-20 11:59:27 +0200

[diff] [blame]

5523

TEST_EQUAL( 0, mbedtls_ct_hmac( &ctx, add_data, sizeof( add_data ),

gabor-mezei-arm

9fa43ce

2021-09-28 16:14:47 +0200

[diff] [blame]

5524

data, in_len,

5525

min_in_len, max_in_len,

5526

out ) );

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5527

#endif /* MBEDTLS_USE_PSA_CRYPTO */

Manuel Pégourié-Gonnard

9670a59

2020-07-10 10:21:46 +0200

[diff] [blame]

5528

TEST_CF_PUBLIC( &in_len, sizeof( in_len ) );

5529

TEST_CF_PUBLIC( out, out_len );

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5530

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5531

#if defined(MBEDTLS_USE_PSA_CRYPTO)

5532

TEST_EQUAL( PSA_SUCCESS, psa_mac_verify_setup( &operation,

5533

key, alg ) );

5534

TEST_EQUAL( PSA_SUCCESS, psa_mac_update( &operation, add_data,

5535

sizeof( add_data ) ) );

5536

TEST_EQUAL( PSA_SUCCESS, psa_mac_update( &operation,

5537

data, in_len ) );

5538

TEST_EQUAL( PSA_SUCCESS, psa_mac_verify_finish( &operation,

5539

out, out_len ) );

5540

#else

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5541

/* Compute the reference result */

5542

TEST_EQUAL( 0, mbedtls_md_hmac_update( &ref_ctx, add_data,

5543

sizeof( add_data ) ) );

5544

TEST_EQUAL( 0, mbedtls_md_hmac_update( &ref_ctx, data, in_len ) );

5545

TEST_EQUAL( 0, mbedtls_md_hmac_finish( &ref_ctx, ref_out ) );

5546

TEST_EQUAL( 0, mbedtls_md_hmac_reset( &ref_ctx ) );

5547

5548

/* Compare */

5549

ASSERT_COMPARE( out, out_len, ref_out, out_len );

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5550

#endif /* MBEDTLS_USE_PSA_CRYPTO */

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5551

}

5552

5553

mbedtls_free( data );

data = NULL;

}

exit:

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5558

#if defined(MBEDTLS_USE_PSA_CRYPTO)

5559

psa_mac_abort( &operation );

5560

psa_destroy_key( key );

5561

#else

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5562

mbedtls_md_free( &ref_ctx );

5563

mbedtls_md_free( &ctx );

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5564

#endif /* MBEDTLS_USE_PSA_CRYPTO */

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5565

5566

mbedtls_free( data );

5567

mbedtls_free( out );

Neil Armstrong

2022-02-25 15:09:36 +0100

[diff] [blame]

5568

5569

USE_PSA_DONE( );

Manuel Pégourié-Gonnard

2020-07-02 11:34:02 +0200

[diff] [blame]

5570

}

5571

/* END_CASE */

Manuel Pégourié-Gonnard

7fe2c5f

2020-08-18 12:02:54 +0200

[diff] [blame]

5572

5573

/* BEGIN_CASE depends_on:MBEDTLS_SSL_SOME_SUITES_USE_TLS_CBC:MBEDTLS_TEST_HOOKS */

5574

void ssl_cf_memcpy_offset( int offset_min, int offset_max, int len )

5575

{

5576

unsigned char *dst = NULL;

5577

unsigned char *src = NULL;

5578

size_t src_len = offset_max + len;

5579

size_t secret;

5580

5581

ASSERT_ALLOC( dst, len );

5582

ASSERT_ALLOC( src, src_len );

5583

5584

/* Fill src in a way that we can detect if we copied the right bytes */

5585

mbedtls_test_rnd_std_rand( NULL, src, src_len );

5586

5587

for( secret = offset_min; secret <= (size_t) offset_max; secret++ )

5588

{

Chris Jones

9634bb1

2021-01-20 15:56:42 +0000

[diff] [blame]

5589

mbedtls_test_set_step( (int) secret );

Manuel Pégourié-Gonnard

7fe2c5f

2020-08-18 12:02:54 +0200

[diff] [blame]

5590

5591

TEST_CF_SECRET( &secret, sizeof( secret ) );

Gabor Mezei

90437e3

2021-10-20 11:59:27 +0200

[diff] [blame]

5592

mbedtls_ct_memcpy_offset( dst, src, secret,

gabor-mezei-arm

9fa43ce

2021-09-28 16:14:47 +0200

[diff] [blame]

5593

offset_min, offset_max, len );

Manuel Pégourié-Gonnard

7fe2c5f

2020-08-18 12:02:54 +0200

[diff] [blame]

5594

TEST_CF_PUBLIC( &secret, sizeof( secret ) );

5595

TEST_CF_PUBLIC( dst, len );

5596

5597

ASSERT_COMPARE( dst, len, src + secret, len );

}

exit:

mbedtls_free( dst );

mbedtls_free( src );

}

/* END_CASE */

Hanno Becker

2021-04-19 21:59:22 +0100

[diff] [blame]

5605

5606

/* BEGIN_CASE depends_on:MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED */

5607

void test_multiple_psks()

5608

{

5609

unsigned char psk0[10] = { 0 };

5610

unsigned char psk0_identity[] = { 'f', 'o', 'o' };

5611

5612

unsigned char psk1[10] = { 0 };

5613

unsigned char psk1_identity[] = { 'b', 'a', 'r' };

5614

5615

mbedtls_ssl_config conf;

5616

Neil Armstrong

4c3b4e0

2022-05-03 09:24:26 +0200

[diff] [blame]

5617

USE_PSA_INIT( );

Hanno Becker

2021-04-19 21:59:22 +0100

[diff] [blame]

5618

mbedtls_ssl_config_init( &conf );

5619

5620

TEST_ASSERT( mbedtls_ssl_conf_psk( &conf,

5621

psk0, sizeof( psk0 ),

5622

psk0_identity, sizeof( psk0_identity ) ) == 0 );

5623

TEST_ASSERT( mbedtls_ssl_conf_psk( &conf,

5624

psk1, sizeof( psk1 ),

5625

psk1_identity, sizeof( psk1_identity ) ) ==

5626

MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE );

exit:

mbedtls_ssl_config_free( &conf );

Neil Armstrong

4c3b4e0

2022-05-03 09:24:26 +0200

[diff] [blame]

5631

5632

USE_PSA_DONE( );

Hanno Becker

2021-04-19 21:59:22 +0100

[diff] [blame]

}

/* END_CASE */

/* BEGIN_CASE depends_on:MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED:MBEDTLS_USE_PSA_CRYPTO */

5637

void test_multiple_psks_opaque( int mode )

5638

{

5639

/*

5640

* Mode 0: Raw PSK, then opaque PSK

5641

* Mode 1: Opaque PSK, then raw PSK

5642

* Mode 2: 2x opaque PSK

5643

*/

5644

5645

unsigned char psk0_raw[10] = { 0 };

5646

unsigned char psk0_raw_identity[] = { 'f', 'o', 'o' };

5647

Andrzej Kurek

03e0146

2022-01-03 12:53:24 +0100

[diff] [blame]

5648

mbedtls_svc_key_id_t psk0_opaque = mbedtls_svc_key_id_make( 0x1, (psa_key_id_t) 1 );

5649

Hanno Becker

2021-04-19 21:59:22 +0100

[diff] [blame]

5650

unsigned char psk0_opaque_identity[] = { 'f', 'o', 'o' };

5651

5652

unsigned char psk1_raw[10] = { 0 };

5653

unsigned char psk1_raw_identity[] = { 'b', 'a', 'r' };

5654

Andrzej Kurek

03e0146

2022-01-03 12:53:24 +0100

[diff] [blame]

5655

mbedtls_svc_key_id_t psk1_opaque = mbedtls_svc_key_id_make( 0x1, (psa_key_id_t) 2 );

5656

Hanno Becker

2021-04-19 21:59:22 +0100

[diff] [blame]

5657

unsigned char psk1_opaque_identity[] = { 'b', 'a', 'r' };

5658

5659

mbedtls_ssl_config conf;

5660

5661

USE_PSA_INIT( );

5662

mbedtls_ssl_config_init( &conf );

switch( mode )

{

case 0:

TEST_ASSERT( mbedtls_ssl_conf_psk( &conf,

5669

psk0_raw, sizeof( psk0_raw ),

5670

psk0_raw_identity, sizeof( psk0_raw_identity ) )

5671

== 0 );

5672

TEST_ASSERT( mbedtls_ssl_conf_psk_opaque( &conf,

5673

psk1_opaque,

5674

psk1_opaque_identity, sizeof( psk1_opaque_identity ) )

5675

== MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE );

break;

case 1:

TEST_ASSERT( mbedtls_ssl_conf_psk_opaque( &conf,

5681

psk0_opaque,

5682

psk0_opaque_identity, sizeof( psk0_opaque_identity ) )

5683

== 0 );

5684

TEST_ASSERT( mbedtls_ssl_conf_psk( &conf,

5685

psk1_raw, sizeof( psk1_raw ),

5686

psk1_raw_identity, sizeof( psk1_raw_identity ) )

5687

== MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE );

break;

case 2:

TEST_ASSERT( mbedtls_ssl_conf_psk_opaque( &conf,

5694

psk0_opaque,

5695

psk0_opaque_identity, sizeof( psk0_opaque_identity ) )

5696

== 0 );

5697

TEST_ASSERT( mbedtls_ssl_conf_psk_opaque( &conf,

5698

psk1_opaque,

5699

psk1_opaque_identity, sizeof( psk1_opaque_identity ) )

5700

== MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE );

break;

default:

TEST_ASSERT( 0 );

break;

}

exit:

mbedtls_ssl_config_free( &conf );

USE_PSA_DONE( );

}

/* END_CASE */

Brett Warren

2021-10-20 23:08:38 +0100

[diff] [blame]

5716

Ronald Cron

37bdaab

2022-03-30 16:45:51 +0200

[diff] [blame]

5717

/* BEGIN_CASE */

5718

void conf_version( int endpoint, int transport,

Glenn Strauss

59b0d54

2022-04-12 07:10:06 -0400

[diff] [blame]

5719

int min_tls_version, int max_tls_version,

Ronald Cron

37bdaab

2022-03-30 16:45:51 +0200

[diff] [blame]

5720

int expected_ssl_setup_result )

5721

{

5722

mbedtls_ssl_config conf;

5723

mbedtls_ssl_context ssl;

5724

5725

mbedtls_ssl_config_init( &conf );

5726

mbedtls_ssl_init( &ssl );

5727

5728

mbedtls_ssl_conf_endpoint( &conf, endpoint );

5729

mbedtls_ssl_conf_transport( &conf, transport );

Glenn Strauss

59b0d54

2022-04-12 07:10:06 -0400

[diff] [blame]

5730

mbedtls_ssl_conf_min_tls_version( &conf, min_tls_version );

5731

mbedtls_ssl_conf_max_tls_version( &conf, max_tls_version );

Ronald Cron

37bdaab

2022-03-30 16:45:51 +0200

[diff] [blame]

5732

5733

TEST_ASSERT( mbedtls_ssl_setup( &ssl, &conf ) == expected_ssl_setup_result );

5734

5735

mbedtls_ssl_free( &ssl );

5736

mbedtls_ssl_config_free( &conf );

}

/* END_CASE */

Brett Warren

2021-10-20 23:08:38 +0100

[diff] [blame]

5740

/* BEGIN_CASE depends_on:MBEDTLS_ECP_C:!MBEDTLS_DEPRECATED_REMOVED:!MBEDTLS_DEPRECATED_WARNING:MBEDTLS_ECP_DP_SECP192R1_ENABLED:MBEDTLS_ECP_DP_SECP224R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED */

void conf_curve()

{

mbedtls_ecp_group_id curve_list[] = { MBEDTLS_ECP_DP_SECP192R1,

5745

MBEDTLS_ECP_DP_SECP224R1,

5746

MBEDTLS_ECP_DP_SECP256R1,

5747

MBEDTLS_ECP_DP_NONE };

Tom Cosgrove

a327b52

2022-08-03 08:33:06 +0100

[diff] [blame]

5748

uint16_t iana_tls_group_list[] = { MBEDTLS_SSL_IANA_TLS_GROUP_SECP192R1,

5749

MBEDTLS_SSL_IANA_TLS_GROUP_SECP224R1,

5750

MBEDTLS_SSL_IANA_TLS_GROUP_SECP256R1,

5751

MBEDTLS_SSL_IANA_TLS_GROUP_NONE };

Brett Warren

2021-10-20 23:08:38 +0100

[diff] [blame]

5752

5753

mbedtls_ssl_config conf;

5754

mbedtls_ssl_config_init( &conf );

Jerry Yu

baa4934

2022-02-15 10:26:40 +0800

[diff] [blame]

5755

#if defined(MBEDTLS_SSL_PROTO_TLS1_2)

Glenn Strauss

e3af4cb

2022-03-15 03:23:42 -0400

[diff] [blame]

5756

mbedtls_ssl_conf_max_tls_version( &conf, MBEDTLS_SSL_VERSION_TLS1_2 );

5757

mbedtls_ssl_conf_min_tls_version( &conf, MBEDTLS_SSL_VERSION_TLS1_2 );

Jerry Yu

baa4934

2022-02-15 10:26:40 +0800

[diff] [blame]

5758

#else

Glenn Strauss

e3af4cb

2022-03-15 03:23:42 -0400

[diff] [blame]

5759

mbedtls_ssl_conf_max_tls_version( &conf, MBEDTLS_SSL_VERSION_TLS1_3 );

5760

mbedtls_ssl_conf_min_tls_version( &conf, MBEDTLS_SSL_VERSION_TLS1_3 );

Jerry Yu

baa4934

2022-02-15 10:26:40 +0800

[diff] [blame]

5761

#endif

Brett Warren

2021-10-20 23:08:38 +0100

[diff] [blame]

5762

mbedtls_ssl_conf_curves( &conf, curve_list );

5763

5764

mbedtls_ssl_context ssl;

5765

mbedtls_ssl_init( &ssl );

Paul Elliott

46a6c20

2021-12-09 18:16:13 +0000

[diff] [blame]

5766

TEST_ASSERT( mbedtls_ssl_setup( &ssl, &conf ) == 0 );

Brett Warren

2021-10-20 23:08:38 +0100

[diff] [blame]

5767

5768

TEST_ASSERT( ssl.handshake != NULL && ssl.handshake->group_list != NULL );

5769

TEST_ASSERT( ssl.conf != NULL && ssl.conf->group_list == NULL );

5770

5771

TEST_EQUAL( ssl.handshake->group_list[ARRAY_LENGTH( iana_tls_group_list ) - 1], MBEDTLS_SSL_IANA_TLS_GROUP_NONE );

5772

5773

for( size_t i = 0; i < ARRAY_LENGTH( iana_tls_group_list ); i++ )

5774

TEST_EQUAL( iana_tls_group_list[i], ssl.handshake->group_list[i] );

5775

5776

mbedtls_ssl_free( &ssl );

5777

mbedtls_ssl_config_free( &conf );

}

/* END_CASE */

/* BEGIN_CASE depends_on:MBEDTLS_DEPRECATED_REMOVED */

5782

void conf_group()

5783

{

5784

uint16_t iana_tls_group_list[] = { MBEDTLS_SSL_IANA_TLS_GROUP_SECP192R1,

5785

MBEDTLS_SSL_IANA_TLS_GROUP_SECP224R1,

5786

MBEDTLS_SSL_IANA_TLS_GROUP_SECP256R1,

5787

MBEDTLS_SSL_IANA_TLS_GROUP_NONE };

5788

5789

mbedtls_ssl_config conf;

5790

mbedtls_ssl_config_init( &conf );

5791

Glenn Strauss

e3af4cb

2022-03-15 03:23:42 -0400

[diff] [blame]

5792

mbedtls_ssl_conf_max_tls_version( &conf, MBEDTLS_SSL_VERSION_TLS1_2 );

5793

mbedtls_ssl_conf_min_tls_version( &conf, MBEDTLS_SSL_VERSION_TLS1_2 );

Brett Warren

2021-10-20 23:08:38 +0100

[diff] [blame]

5794

5795

mbedtls_ssl_conf_groups( &conf, iana_tls_group_list );

5796

5797

mbedtls_ssl_context ssl;

5798

mbedtls_ssl_init( &ssl );

Paul Elliott

46a6c20

2021-12-09 18:16:13 +0000

[diff] [blame]

5799

TEST_ASSERT( mbedtls_ssl_setup( &ssl, &conf ) == 0 );

Brett Warren

2021-10-20 23:08:38 +0100

[diff] [blame]

5800

5801

TEST_ASSERT( ssl.conf != NULL && ssl.conf->group_list != NULL );

5802

5803

TEST_EQUAL( ssl.conf->group_list[ARRAY_LENGTH( iana_tls_group_list ) - 1], MBEDTLS_SSL_IANA_TLS_GROUP_NONE );

5804

5805

for( size_t i = 0; i < ARRAY_LENGTH( iana_tls_group_list ); i++ )

5806

TEST_EQUAL( iana_tls_group_list[i], ssl.conf->group_list[i] );

5807

5808

mbedtls_ssl_free( &ssl );

5809

mbedtls_ssl_config_free( &conf );

5810

}

5811

/* END_CASE */

Paul Elliott

b9af2db

2022-03-09 15:34:37 +0000

[diff] [blame]

5812

Andrzej Kurek

2022-08-17 15:20:40 -0400

[diff] [blame]

5813

/* BEGIN_CASE depends_on:MBEDTLS_SSL_SRV_C:MBEDTLS_SSL_CACHE_C:!MBEDTLS_SSL_PROTO_TLS1_3:MBEDTLS_DEBUG_C:MBEDTLS_X509_CRT_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_PKCS1_V15 */

Andrzej Kurek

2022-06-10 10:33:05 -0400

[diff] [blame]

5814

void force_bad_session_id_len( )

5815

{

5816

enum { BUFFSIZE = 1024 };

5817

handshake_test_options options;

5818

mbedtls_endpoint client, server;

5819

log_pattern srv_pattern, cli_pattern;

5820

mbedtls_test_message_socket_context server_context, client_context;

5821

5822

srv_pattern.pattern = cli_pattern.pattern = "cache did not store session";

5823

srv_pattern.counter = 0;

5824

init_handshake_options( &options );

5825

5826

options.srv_log_obj = &srv_pattern;

5827

options.srv_log_fun = log_analyzer;

USE_PSA_INIT( );

mbedtls_message_socket_init( &server_context );

5832

mbedtls_message_socket_init( &client_context );

5833

5834

TEST_ASSERT( mbedtls_endpoint_init( &client, MBEDTLS_SSL_IS_CLIENT,

5835

&options, NULL, NULL,

Andrzej Kurek

2022-06-10 11:07:39 -0400

[diff] [blame]

5836

NULL, NULL ) == 0 );

Andrzej Kurek

2022-06-10 10:33:05 -0400

[diff] [blame]

5837

5838

TEST_ASSERT( mbedtls_endpoint_init( &server, MBEDTLS_SSL_IS_SERVER,

Andrzej Kurek

2022-06-10 11:07:39 -0400

[diff] [blame]

5839

&options, NULL, NULL, NULL,

5840

NULL ) == 0 );

Andrzej Kurek

2022-06-10 10:33:05 -0400

[diff] [blame]

5841

5842

mbedtls_debug_set_threshold( 1 );

5843

mbedtls_ssl_conf_dbg( &server.conf, options.srv_log_fun,

5844

options.srv_log_obj );

5845

5846

TEST_ASSERT( mbedtls_mock_socket_connect( &(client.socket),

&(server.socket),

BUFFSIZE ) == 0 );

TEST_ASSERT( mbedtls_move_handshake_to_state( &(client.ssl),

5851

&(server.ssl),

5852

MBEDTLS_SSL_HANDSHAKE_WRAPUP )

5853

== 0 );

5854

/* Force a bad session_id_len that will be read by the server in

5855

* mbedtls_ssl_cache_set. */

5856

server.ssl.session_negotiate->id_len = 33;

5857

if( options.cli_msg_len != 0 || options.srv_msg_len != 0 )

5858

{

5859

/* Start data exchanging test */

5860

TEST_ASSERT( mbedtls_exchange_data( &(client.ssl), options.cli_msg_len,

5861

options.expected_cli_fragments,

5862

&(server.ssl), options.srv_msg_len,

5863

options.expected_srv_fragments )

5864

== 0 );

5865

}

Andrzej Kurek

2022-06-10 10:33:05 -0400

[diff] [blame]

5866

5867

/* Make sure that the cache did not store the session */

5868

TEST_EQUAL( srv_pattern.counter, 1 );

5869

exit:

5870

mbedtls_endpoint_free( &client, NULL );

5871

mbedtls_endpoint_free( &server, NULL );

5872

free_handshake_options( &options );

5873

mbedtls_debug_set_threshold( 0 );

USE_PSA_DONE( );

}

/* END_CASE */

Andrzej Kurek

2022-06-08 11:57:57 -0400

[diff] [blame]

5878

/* BEGIN_CASE depends_on:MBEDTLS_SSL_SRV_C:MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE:MBEDTLS_TEST_HOOKS */

Andrzej Kurek

cfb0194

2022-06-06 13:08:23 -0400

[diff] [blame]

5879

void cookie_parsing( data_t *cookie, int exp_ret )

5880

{

5881

mbedtls_ssl_context ssl;

5882

mbedtls_ssl_config conf;

5883

size_t len;

5884

5885

mbedtls_ssl_init( &ssl );

5886

mbedtls_ssl_config_init( &conf );

5887

TEST_EQUAL( mbedtls_ssl_config_defaults( &conf, MBEDTLS_SSL_IS_SERVER,

5888

MBEDTLS_SSL_TRANSPORT_DATAGRAM,

5889

MBEDTLS_SSL_PRESET_DEFAULT ),

5890

0 );

5891

5892

TEST_EQUAL( mbedtls_ssl_setup( &ssl, &conf ), 0 );

Andrzej Kurek

078e9bc

2022-06-08 11:47:33 -0400

[diff] [blame]

5893

TEST_EQUAL( mbedtls_ssl_check_dtls_clihlo_cookie( &ssl, ssl.cli_id,

5894

ssl.cli_id_len,

5895

cookie->x, cookie->len,

5896

ssl.out_buf,

5897

MBEDTLS_SSL_OUT_CONTENT_LEN,

5898

&len ),

Andrzej Kurek

cfb0194

2022-06-06 13:08:23 -0400

[diff] [blame]

5899

exp_ret );

5900

5901

mbedtls_ssl_free( &ssl );

5902

mbedtls_ssl_config_free( &conf );

}

/* END_CASE */

Paul Elliott

2022-03-09 15:34:37 +0000

[diff] [blame]

5906

/* BEGIN_CASE depends_on:MBEDTLS_TIMING_C:MBEDTLS_HAVE_TIME */

Paul Elliott

42d5e51

2022-03-24 19:41:28 +0000

[diff] [blame]

5907

void timing_final_delay_accessor( )

Paul Elliott

b9af2db

2022-03-09 15:34:37 +0000

[diff] [blame]

5908

{

5909

mbedtls_timing_delay_context delay_context;

5910

5911

mbedtls_timing_set_delay( &delay_context, 50, 100 );

5912

5913

TEST_ASSERT( mbedtls_timing_get_final_delay( &delay_context ) == 100 );

5914

}

5915

/* END_CASE */

Paul Elliott

02758a5

2022-03-16 14:32:33 +0000

[diff] [blame]

5916

5917

/* BEGIN_CASE depends_on:MBEDTLS_SSL_DTLS_CONNECTION_ID */

5918

void cid_sanity( )

5919

{

5920

mbedtls_ssl_context ssl;

5921

mbedtls_ssl_config conf;

5922

5923

unsigned char own_cid[MBEDTLS_SSL_CID_IN_LEN_MAX];

5924

unsigned char test_cid[MBEDTLS_SSL_CID_IN_LEN_MAX];

int cid_enabled;

size_t own_cid_len;

mbedtls_test_rnd_std_rand( NULL, own_cid, sizeof( own_cid ) );

5929

5930

mbedtls_ssl_init( &ssl );

5931

mbedtls_ssl_config_init( &conf );

5932

5933

TEST_ASSERT( mbedtls_ssl_config_defaults( &conf,

5934

MBEDTLS_SSL_IS_CLIENT,

5935

MBEDTLS_SSL_TRANSPORT_STREAM,

5936

MBEDTLS_SSL_PRESET_DEFAULT )

5937

== 0 );

5938

5939

TEST_ASSERT( mbedtls_ssl_setup( &ssl, &conf ) == 0 );

5940

5941

/* Can't use CID functions with stream transport. */

5942

TEST_ASSERT( mbedtls_ssl_set_cid( &ssl, MBEDTLS_SSL_CID_ENABLED, own_cid,

5943

sizeof( own_cid ) )

5944

== MBEDTLS_ERR_SSL_BAD_INPUT_DATA );

5945

5946

TEST_ASSERT( mbedtls_ssl_get_own_cid( &ssl, &cid_enabled, test_cid,

5947

&own_cid_len )

5948

== MBEDTLS_ERR_SSL_BAD_INPUT_DATA );

5949

5950

TEST_ASSERT( mbedtls_ssl_config_defaults( &conf,

5951

MBEDTLS_SSL_IS_CLIENT,

5952

MBEDTLS_SSL_TRANSPORT_DATAGRAM,

5953

MBEDTLS_SSL_PRESET_DEFAULT )

5954

== 0 );

5955

5956

/* Attempt to set config cid size too big. */

5957

TEST_ASSERT( mbedtls_ssl_conf_cid( &conf, MBEDTLS_SSL_CID_IN_LEN_MAX + 1,

5958

MBEDTLS_SSL_UNEXPECTED_CID_IGNORE )

5959

== MBEDTLS_ERR_SSL_BAD_INPUT_DATA );

5960

5961

TEST_ASSERT( mbedtls_ssl_conf_cid( &conf, sizeof( own_cid ),

5962

MBEDTLS_SSL_UNEXPECTED_CID_IGNORE )

5963

== 0 );

5964

5965

/* Attempt to set CID length not matching config. */

5966

TEST_ASSERT( mbedtls_ssl_set_cid( &ssl, MBEDTLS_SSL_CID_ENABLED, own_cid,

5967

MBEDTLS_SSL_CID_IN_LEN_MAX - 1 )

5968

== MBEDTLS_ERR_SSL_BAD_INPUT_DATA );

5969

5970

TEST_ASSERT( mbedtls_ssl_set_cid( &ssl, MBEDTLS_SSL_CID_ENABLED, own_cid,

sizeof( own_cid ) )

== 0 );

/* Test we get back what we put in. */

5975

TEST_ASSERT( mbedtls_ssl_get_own_cid( &ssl, &cid_enabled, test_cid,

&own_cid_len )

== 0 );

TEST_EQUAL( cid_enabled, MBEDTLS_SSL_CID_ENABLED );

5980

ASSERT_COMPARE( own_cid, own_cid_len, test_cid, own_cid_len );

5981

5982

/* Test disabling works. */

5983

TEST_ASSERT( mbedtls_ssl_set_cid( &ssl, MBEDTLS_SSL_CID_DISABLED, NULL,

0 )

== 0 );

TEST_ASSERT( mbedtls_ssl_get_own_cid( &ssl, &cid_enabled, test_cid,

&own_cid_len )

== 0 );

TEST_EQUAL( cid_enabled, MBEDTLS_SSL_CID_DISABLED );

5992

5993

mbedtls_ssl_free( &ssl );

5994

mbedtls_ssl_config_free( &conf );

}

/* END_CASE */

Andrzej Kurek

2022-08-17 15:20:40 -0400

[diff] [blame]

5998

/* BEGIN_CASE depends_on:MBEDTLS_X509_CRT_PARSE_C:MBEDTLS_USE_PSA_CRYPTO:MBEDTLS_PKCS1_V15:MBEDTLS_SSL_PROTO_TLS1_2:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_C:MBEDTLS_ECDSA_C */

Gilles Peskine

2022-04-08 16:48:09 -0400

[diff] [blame]

5999

void raw_key_agreement_fail( int bad_server_ecdhe_key )

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6000

{

6001

enum { BUFFSIZE = 17000 };

6002

mbedtls_endpoint client, server;

6003

mbedtls_psa_stats_t stats;

Andrzej Kurek

39d88d4

2022-03-31 06:30:54 -0400

[diff] [blame]

6004

size_t free_slots_before = -1;

Andrzej Kurek

2022-06-10 11:07:39 -0400

[diff] [blame]

6005

handshake_test_options options;

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6006

Andrzej Kurek

cc28e9a

2022-03-08 18:36:35 -0500

[diff] [blame]

6007

uint16_t iana_tls_group_list[] = { MBEDTLS_SSL_IANA_TLS_GROUP_SECP256R1,

6008

MBEDTLS_SSL_IANA_TLS_GROUP_NONE };

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6009

USE_PSA_INIT( );

6010

Andrzej Kurek

2022-06-10 11:07:39 -0400

[diff] [blame]

6011

init_handshake_options( &options );

6012

options.pk_alg = MBEDTLS_PK_ECDSA;

6013

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6014

/* Client side, force SECP256R1 to make one key bitflip fail

Andrzej Kurek

83e60ee

2022-04-14 08:51:41 -0400

[diff] [blame]

6015

* the raw key agreement. Flipping the first byte makes the

6016

* required 0x04 identifier invalid. */

Andrzej Kurek

2022-04-08 08:10:53 -0400

[diff] [blame]

6017

TEST_EQUAL( mbedtls_endpoint_init( &client, MBEDTLS_SSL_IS_CLIENT,

Andrzej Kurek

2022-06-10 11:07:39 -0400

[diff] [blame]

6018

&options, NULL, NULL,

Andrzej Kurek

2022-04-08 08:10:53 -0400

[diff] [blame]

6019

NULL, iana_tls_group_list ), 0 );

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6020

6021

/* Server side */

Andrzej Kurek

2022-04-08 08:10:53 -0400

[diff] [blame]

6022

TEST_EQUAL( mbedtls_endpoint_init( &server, MBEDTLS_SSL_IS_SERVER,

Andrzej Kurek

2022-06-10 11:07:39 -0400

[diff] [blame]

6023

&options, NULL, NULL,

6024

NULL, NULL ), 0 );

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6025

Andrzej Kurek

2022-04-08 08:10:53 -0400

[diff] [blame]

6026

TEST_EQUAL( mbedtls_mock_socket_connect( &(client.socket),

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6027

&(server.socket),

Andrzej Kurek

2022-04-08 08:10:53 -0400

[diff] [blame]

6028

BUFFSIZE ), 0 );

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6029

Andrzej Kurek

2022-04-08 08:10:53 -0400

[diff] [blame]

6030

TEST_EQUAL( mbedtls_move_handshake_to_state( &(client.ssl),

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6031

&(server.ssl),

6032

MBEDTLS_SSL_CLIENT_KEY_EXCHANGE )

Andrzej Kurek

2022-04-08 08:10:53 -0400

[diff] [blame]

6033

, 0 );

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6034

Andrzej Kurek

39d88d4

2022-03-31 06:30:54 -0400

[diff] [blame]

6035

mbedtls_psa_get_stats( &stats );

6036

/* Save the number of slots in use up to this point.

6037

* With PSA, one can be used for the ECDH private key. */

6038

free_slots_before = stats.empty_slots;

Andrzej Kurek

cb33bc5

2022-03-31 07:17:18 -0400

[diff] [blame]

6039

Gilles Peskine

2022-04-08 16:48:09 -0400

[diff] [blame]

6040

if( bad_server_ecdhe_key )

6041

{

6042

/* Force a simulated bitflip in the server key. to make the

6043

* raw key agreement in ssl_write_client_key_exchange fail. */

6044

(client.ssl).handshake->ecdh_psa_peerkey[0] ^= 0x02;

6045

}

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6046

Gilles Peskine

2022-04-08 16:48:09 -0400

[diff] [blame]

6047

TEST_EQUAL( mbedtls_move_handshake_to_state( &(client.ssl),

6048

&(server.ssl),

6049

MBEDTLS_SSL_HANDSHAKE_OVER ),

6050

bad_server_ecdhe_key ? MBEDTLS_ERR_SSL_HW_ACCEL_FAILED : 0 );

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6051

6052

mbedtls_psa_get_stats( &stats );

6053

Gilles Peskine

2022-04-08 16:48:09 -0400

[diff] [blame]

6054

/* Make sure that the key slot is already destroyed in case of failure,

6055

* without waiting to close the connection. */

6056

if( bad_server_ecdhe_key )

6057

TEST_EQUAL( free_slots_before, stats.empty_slots );

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6058

6059

exit:

Andrzej Kurek

28f883e

2022-04-08 07:55:27 -0400

[diff] [blame]

6060

mbedtls_endpoint_free( &client, NULL );

6061

mbedtls_endpoint_free( &server, NULL );

Andrzej Kurek

2022-06-10 11:07:39 -0400

[diff] [blame]

6062

free_handshake_options( &options );

Andrzej Kurek

cb33bc5

2022-03-31 07:17:18 -0400

[diff] [blame]

6063

Andrzej Kurek

2022-03-08 06:55:42 -0500

[diff] [blame]

6064

USE_PSA_DONE( );

6065

}

6066

/* END_CASE */

Ronald Cron

2022-06-10 17:21:51 +0200

[diff] [blame]

6067

/* BEGIN_CASE depends_on:MBEDTLS_TEST_HOOKS:MBEDTLS_SSL_PROTO_TLS1_3:!MBEDTLS_SSL_PROTO_TLS1_2:MBEDTLS_SSL_CLI_C:MBEDTLS_SSL_SRV_C:MBEDTLS_X509_CRT_PARSE_C:MBEDTLS_ECP_DP_SECP384R1_ENABLED */

6068

void tls13_server_certificate_msg_invalid_vector_len( )

6069

{

6070

int ret = -1;

6071

mbedtls_endpoint client_ep, server_ep;

6072

unsigned char *buf, *end;

6073

size_t buf_len;

6074

int step = 0;

6075

int expected_result;

Ronald Cron

2022-06-10 17:24:31 +0200

[diff] [blame]

6076

mbedtls_ssl_chk_buf_ptr_args expected_chk_buf_ptr_args;

Paul Elliott

2022-07-10 12:48:57 +0100

[diff] [blame]

6077

handshake_test_options client_options;

6078

handshake_test_options server_options;

Ronald Cron

2022-06-10 17:21:51 +0200

[diff] [blame]

/*

* Test set-up

*/

USE_PSA_INIT( );

Paul Elliott

2022-07-10 12:48:57 +0100

[diff] [blame]

6085

init_handshake_options( &client_options );

6086

client_options.pk_alg = MBEDTLS_PK_ECDSA;

Ronald Cron

2022-06-10 17:21:51 +0200

[diff] [blame]

6087

ret = mbedtls_endpoint_init( &client_ep, MBEDTLS_SSL_IS_CLIENT,

Paul Elliott

2022-07-10 12:48:57 +0100

[diff] [blame]

6088

&client_options, NULL, NULL, NULL, NULL );

Ronald Cron

2022-06-10 17:21:51 +0200

[diff] [blame]

6089

TEST_EQUAL( ret, 0 );

6090

Paul Elliott

2022-07-10 12:48:57 +0100

[diff] [blame]

6091

init_handshake_options( &server_options );

6092

server_options.pk_alg = MBEDTLS_PK_ECDSA;

Ronald Cron

2022-06-10 17:21:51 +0200

[diff] [blame]

6093

ret = mbedtls_endpoint_init( &server_ep, MBEDTLS_SSL_IS_SERVER,

Paul Elliott

2022-07-10 12:48:57 +0100

[diff] [blame]

6094

&server_options, NULL, NULL, NULL, NULL );

Ronald Cron

2022-06-10 17:21:51 +0200

[diff] [blame]

6095

TEST_EQUAL( ret, 0 );

6096

6097

ret = mbedtls_mock_socket_connect( &(client_ep.socket),

6098

&(server_ep.socket), 1024 );

6099

TEST_EQUAL( ret, 0 );

while( 1 )

{

mbedtls_test_set_step( ++step );

6104

6105

ret = mbedtls_move_handshake_to_state( &(server_ep.ssl),

6106

&(client_ep.ssl),

6107

MBEDTLS_SSL_CERTIFICATE_VERIFY );

6108

TEST_EQUAL( ret, 0 );

6109

6110

ret = mbedtls_ssl_flush_output( &(server_ep.ssl) );

6111

TEST_EQUAL( ret, 0 );

6112

6113

ret = mbedtls_move_handshake_to_state( &(client_ep.ssl),

6114

&(server_ep.ssl),

6115

MBEDTLS_SSL_SERVER_CERTIFICATE );

6116

TEST_EQUAL( ret, 0 );

6117

6118

ret = mbedtls_ssl_tls13_fetch_handshake_msg( &(client_ep.ssl),

6119

MBEDTLS_SSL_HS_CERTIFICATE,

6120

&buf, &buf_len );

6121

TEST_EQUAL( ret, 0 );

end = buf + buf_len;

/*

* Tweak server Certificate message and parse it.

6127

*/

6128

6129

ret = tweak_tls13_certificate_msg_vector_len(

Ronald Cron

2022-06-10 17:24:31 +0200

[diff] [blame]

6130

buf, &end, step, &expected_result, &expected_chk_buf_ptr_args );

Ronald Cron

2022-06-10 17:21:51 +0200

[diff] [blame]

if( ret != 0 )

break;

ret = mbedtls_ssl_tls13_parse_certificate( &(client_ep.ssl), buf, end );

6136

TEST_EQUAL( ret, expected_result );

6137

Ronald Cron

2022-06-10 17:24:31 +0200

[diff] [blame]

6138

TEST_ASSERT( mbedtls_ssl_cmp_chk_buf_ptr_fail_args(

6139

&expected_chk_buf_ptr_args ) == 0 );

6140

6141

mbedtls_ssl_reset_chk_buf_ptr_fail_args( );

6142

Ronald Cron

2022-06-10 17:21:51 +0200

[diff] [blame]

6143

ret = mbedtls_ssl_session_reset( &(client_ep.ssl) );

6144

TEST_EQUAL( ret, 0 );

6145

6146

ret = mbedtls_ssl_session_reset( &(server_ep.ssl) );

6147

TEST_EQUAL( ret, 0 );

6148

}

6149

6150

exit:

Ronald Cron

2022-06-10 17:24:31 +0200

[diff] [blame]

6151

mbedtls_ssl_reset_chk_buf_ptr_fail_args( );

Ronald Cron

2022-06-10 17:21:51 +0200

[diff] [blame]

6152

mbedtls_endpoint_free( &client_ep, NULL );

6153

mbedtls_endpoint_free( &server_ep, NULL );

Paul Elliott

2022-07-10 12:48:57 +0100

[diff] [blame]

6154

free_handshake_options( &client_options );

6155

free_handshake_options( &server_options );

Ronald Cron