Blame - tests/src/test_helpers/ssl_helpers.c - mirror/mbed-tls

blob: 968ec997251fb2714c9de28cf12df7e8fb81a1cf [file] [log] [blame]

Yanray Wang	5fce145	2022-10-24 14:42:01 +0800	[diff] [blame]	1	/** \file ssl_helpers.c
				2	*
				3	* \brief Helper functions to set up a TLS connection.
				4	*/
				5
				6	/*
				7	* Copyright The Mbed TLS Contributors
				8	* SPDX-License-Identifier: Apache-2.0
				9	*
				10	* Licensed under the Apache License, Version 2.0 (the "License"); you may
				11	* not use this file except in compliance with the License.
				12	* You may obtain a copy of the License at
				13	*
				14	* http://www.apache.org/licenses/LICENSE-2.0
				15	*
				16	* Unless required by applicable law or agreed to in writing, software
				17	* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
				18	* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
				19	* See the License for the specific language governing permissions and
				20	* limitations under the License.
				21	*/
				22
				23	#include <test/ssl_helpers.h>
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	24
Yanray Wang	4323e45	2023-03-14 16:52:06 +0800	[diff] [blame]	25	#if defined(MBEDTLS_SSL_TLS_C)
				26
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	27	void mbedtls_test_ssl_log_analyzer(void *ctx, int level,
				28	const char *file, int line,
				29	const char *str)
				30	{
				31	mbedtls_test_ssl_log_pattern p = (mbedtls_test_ssl_log_pattern ) ctx;
				32
				33	(void) level;
				34	(void) line;
				35	(void) file;
				36
				37	if (NULL != p &&
				38	NULL != p->pattern &&
				39	NULL != strstr(str, p->pattern)) {
				40	p->counter++;
				41	}
				42	}
				43
				44	void mbedtls_test_init_handshake_options(
				45	mbedtls_test_handshake_test_options *opts)
				46	{
				47	opts->cipher = "";
				48	opts->client_min_version = TEST_SSL_MINOR_VERSION_NONE;
				49	opts->client_max_version = TEST_SSL_MINOR_VERSION_NONE;
				50	opts->server_min_version = TEST_SSL_MINOR_VERSION_NONE;
				51	opts->server_max_version = TEST_SSL_MINOR_VERSION_NONE;
				52	opts->expected_negotiated_version = MBEDTLS_SSL_MINOR_VERSION_3;
				53	opts->pk_alg = MBEDTLS_PK_RSA;
				54	opts->psk_str = NULL;
				55	opts->dtls = 0;
				56	opts->srv_auth_mode = MBEDTLS_SSL_VERIFY_NONE;
				57	opts->serialize = 0;
				58	opts->mfl = MBEDTLS_SSL_MAX_FRAG_LEN_NONE;
				59	opts->cli_msg_len = 100;
				60	opts->srv_msg_len = 100;
				61	opts->expected_cli_fragments = 1;
				62	opts->expected_srv_fragments = 1;
				63	opts->renegotiate = 0;
				64	opts->legacy_renegotiation = MBEDTLS_SSL_LEGACY_NO_RENEGOTIATION;
				65	opts->srv_log_obj = NULL;
				66	opts->srv_log_obj = NULL;
				67	opts->srv_log_fun = NULL;
				68	opts->cli_log_fun = NULL;
				69	opts->resize_buffers = 1;
				70	}
				71
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	72	void mbedtls_test_ssl_buffer_init(mbedtls_test_ssl_buffer *buf)
				73	{
				74	memset(buf, 0, sizeof(*buf));
				75	}
				76
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	77	int mbedtls_test_ssl_buffer_setup(mbedtls_test_ssl_buffer *buf,
				78	size_t capacity)
				79	{
				80	buf->buffer = (unsigned char *) mbedtls_calloc(capacity,
				81	sizeof(unsigned char));
				82	if (NULL == buf->buffer) {
				83	return MBEDTLS_ERR_SSL_ALLOC_FAILED;
				84	}
				85	buf->capacity = capacity;
				86
				87	return 0;
				88	}
				89
				90	void mbedtls_test_ssl_buffer_free(mbedtls_test_ssl_buffer *buf)
				91	{
				92	if (buf->buffer != NULL) {
				93	mbedtls_free(buf->buffer);
				94	}
				95
				96	memset(buf, 0, sizeof(*buf));
				97	}
				98
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	99	int mbedtls_test_ssl_buffer_put(mbedtls_test_ssl_buffer *buf,
				100	const unsigned char *input, size_t input_len)
				101	{
				102	size_t overflow = 0;
				103
				104	if ((buf == NULL) \|\| (buf->buffer == NULL)) {
				105	return -1;
				106	}
				107
				108	/* Reduce input_len to a number that fits in the buffer. */
				109	if ((buf->content_length + input_len) > buf->capacity) {
				110	input_len = buf->capacity - buf->content_length;
				111	}
				112
				113	if (input == NULL) {
				114	return (input_len == 0) ? 0 : -1;
				115	}
				116
				117	/* Check if the buffer has not come full circle and free space is not in
				118	* the middle */
				119	if (buf->start + buf->content_length < buf->capacity) {
				120
				121	/* Calculate the number of bytes that need to be placed at lower memory
				122	* address */
				123	if (buf->start + buf->content_length + input_len
				124	> buf->capacity) {
				125	overflow = (buf->start + buf->content_length + input_len)
				126	% buf->capacity;
				127	}
				128
				129	memcpy(buf->buffer + buf->start + buf->content_length, input,
				130	input_len - overflow);
				131	memcpy(buf->buffer, input + input_len - overflow, overflow);
				132
				133	} else {
				134	/* The buffer has come full circle and free space is in the middle */
				135	memcpy(buf->buffer + buf->start + buf->content_length - buf->capacity,
				136	input, input_len);
				137	}
				138
				139	buf->content_length += input_len;
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	140	return (input_len > INT_MAX) ? INT_MAX : (int) input_len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	141	}
				142
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	143	int mbedtls_test_ssl_buffer_get(mbedtls_test_ssl_buffer *buf,
				144	unsigned char *output, size_t output_len)
				145	{
				146	size_t overflow = 0;
				147
				148	if ((buf == NULL) \|\| (buf->buffer == NULL)) {
				149	return -1;
				150	}
				151
				152	if (output == NULL && output_len == 0) {
				153	return 0;
				154	}
				155
				156	if (buf->content_length < output_len) {
				157	output_len = buf->content_length;
				158	}
				159
				160	/* Calculate the number of bytes that need to be drawn from lower memory
				161	* address */
				162	if (buf->start + output_len > buf->capacity) {
				163	overflow = (buf->start + output_len) % buf->capacity;
				164	}
				165
				166	if (output != NULL) {
				167	memcpy(output, buf->buffer + buf->start, output_len - overflow);
				168	memcpy(output + output_len - overflow, buf->buffer, overflow);
				169	}
				170
				171	buf->content_length -= output_len;
				172	buf->start = (buf->start + output_len) % buf->capacity;
				173
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	174	return (output_len > INT_MAX) ? INT_MAX : (int) output_len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	175	}
				176
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	177	int mbedtls_test_ssl_message_queue_setup(
				178	mbedtls_test_ssl_message_queue *queue, size_t capacity)
				179	{
				180	queue->messages = (size_t *) mbedtls_calloc(capacity, sizeof(size_t));
				181	if (NULL == queue->messages) {
				182	return MBEDTLS_ERR_SSL_ALLOC_FAILED;
				183	}
				184
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	185	queue->capacity = (capacity > INT_MAX) ? INT_MAX : (int) capacity;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	186	queue->pos = 0;
				187	queue->num = 0;
				188
				189	return 0;
				190	}
				191
				192	void mbedtls_test_ssl_message_queue_free(
				193	mbedtls_test_ssl_message_queue *queue)
				194	{
				195	if (queue == NULL) {
				196	return;
				197	}
				198
				199	if (queue->messages != NULL) {
				200	mbedtls_free(queue->messages);
				201	}
				202
				203	memset(queue, 0, sizeof(*queue));
				204	}
				205
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	206	int mbedtls_test_ssl_message_queue_push_info(
				207	mbedtls_test_ssl_message_queue *queue, size_t len)
				208	{
				209	int place;
				210	if (queue == NULL) {
				211	return MBEDTLS_TEST_ERROR_ARG_NULL;
				212	}
				213
				214	if (queue->num >= queue->capacity) {
				215	return MBEDTLS_ERR_SSL_WANT_WRITE;
				216	}
				217
				218	place = (queue->pos + queue->num) % queue->capacity;
				219	queue->messages[place] = len;
				220	queue->num++;
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	221	return (len > INT_MAX) ? INT_MAX : (int) len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	222	}
				223
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	224	int mbedtls_test_ssl_message_queue_pop_info(
				225	mbedtls_test_ssl_message_queue *queue, size_t buf_len)
				226	{
				227	size_t message_length;
				228	if (queue == NULL) {
				229	return MBEDTLS_TEST_ERROR_ARG_NULL;
				230	}
				231	if (queue->num == 0) {
				232	return MBEDTLS_ERR_SSL_WANT_READ;
				233	}
				234
				235	message_length = queue->messages[queue->pos];
				236	queue->messages[queue->pos] = 0;
				237	queue->num--;
				238	queue->pos++;
				239	queue->pos %= queue->capacity;
				240	if (queue->pos < 0) {
				241	queue->pos += queue->capacity;
				242	}
				243
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	244	return (message_length > INT_MAX && buf_len > INT_MAX) ? INT_MAX :
				245	(message_length > buf_len) ? (int) buf_len : (int) message_length;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	246	}
				247
				248	/*
				249	* Take a peek on the info about the next message length from the queue.
				250	* This will be the oldest inserted message length(fifo).
				251	*
				252	* \retval MBEDTLS_TEST_ERROR_ARG_NULL, if the queue is null.
				253	* \retval MBEDTLS_ERR_SSL_WANT_READ, if the queue is empty.
				254	* \retval 0, if the peek was successful.
				255	* \retval MBEDTLS_TEST_ERROR_MESSAGE_TRUNCATED, if the given buffer length is
				256	* too small to fit the message. In this case the \p msg_len will be
				257	* set to the full message length so that the
				258	* caller knows what portion of the message can be dropped.
				259	*/
				260	int mbedtls_test_message_queue_peek_info(mbedtls_test_ssl_message_queue *queue,
				261	size_t buf_len, size_t *msg_len)
				262	{
				263	if (queue == NULL \|\| msg_len == NULL) {
				264	return MBEDTLS_TEST_ERROR_ARG_NULL;
				265	}
				266	if (queue->num == 0) {
				267	return MBEDTLS_ERR_SSL_WANT_READ;
				268	}
				269
				270	*msg_len = queue->messages[queue->pos];
				271	return (*msg_len > buf_len) ? MBEDTLS_TEST_ERROR_MESSAGE_TRUNCATED : 0;
				272	}
				273
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	274	void mbedtls_mock_socket_init(mbedtls_test_mock_socket *socket)
				275	{
				276	memset(socket, 0, sizeof(*socket));
				277	}
				278
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	279	void mbedtls_test_mock_socket_close(mbedtls_test_mock_socket *socket)
				280	{
				281	if (socket == NULL) {
				282	return;
				283	}
				284
				285	if (socket->input != NULL) {
				286	mbedtls_test_ssl_buffer_free(socket->input);
				287	mbedtls_free(socket->input);
				288	}
				289
				290	if (socket->output != NULL) {
				291	mbedtls_test_ssl_buffer_free(socket->output);
				292	mbedtls_free(socket->output);
				293	}
				294
				295	if (socket->peer != NULL) {
				296	memset(socket->peer, 0, sizeof(*socket->peer));
				297	}
				298
				299	memset(socket, 0, sizeof(*socket));
				300	}
				301
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	302	int mbedtls_test_mock_socket_connect(mbedtls_test_mock_socket *peer1,
				303	mbedtls_test_mock_socket *peer2,
				304	size_t bufsize)
				305	{
				306	int ret = -1;
				307
				308	peer1->output =
				309	(mbedtls_test_ssl_buffer *) mbedtls_calloc(
				310	1, sizeof(mbedtls_test_ssl_buffer));
				311	if (peer1->output == NULL) {
				312	ret = MBEDTLS_ERR_SSL_ALLOC_FAILED;
				313	goto exit;
				314	}
				315	mbedtls_test_ssl_buffer_init(peer1->output);
				316	if (0 != (ret = mbedtls_test_ssl_buffer_setup(peer1->output, bufsize))) {
				317	goto exit;
				318	}
				319
				320	peer2->output =
				321	(mbedtls_test_ssl_buffer *) mbedtls_calloc(
				322	1, sizeof(mbedtls_test_ssl_buffer));
				323	if (peer2->output == NULL) {
				324	ret = MBEDTLS_ERR_SSL_ALLOC_FAILED;
				325	goto exit;
				326	}
				327	mbedtls_test_ssl_buffer_init(peer2->output);
				328	if (0 != (ret = mbedtls_test_ssl_buffer_setup(peer2->output, bufsize))) {
				329	goto exit;
				330	}
				331
				332	peer1->peer = peer2;
				333	peer2->peer = peer1;
				334	peer1->input = peer2->output;
				335	peer2->input = peer1->output;
				336
				337	peer1->status = peer2->status = MBEDTLS_MOCK_SOCKET_CONNECTED;
				338	ret = 0;
				339
				340	exit:
				341
				342	if (ret != 0) {
				343	mbedtls_test_mock_socket_close(peer1);
				344	mbedtls_test_mock_socket_close(peer2);
				345	}
				346
				347	return ret;
				348	}
				349
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	350	int mbedtls_test_mock_tcp_send_b(void *ctx,
				351	const unsigned char *buf, size_t len)
				352	{
				353	mbedtls_test_mock_socket socket = (mbedtls_test_mock_socket ) ctx;
				354
				355	if (socket == NULL \|\| socket->status != MBEDTLS_MOCK_SOCKET_CONNECTED) {
				356	return -1;
				357	}
				358
				359	return mbedtls_test_ssl_buffer_put(socket->output, buf, len);
				360	}
				361
				362	int mbedtls_test_mock_tcp_recv_b(void ctx, unsigned char buf, size_t len)
				363	{
				364	mbedtls_test_mock_socket socket = (mbedtls_test_mock_socket ) ctx;
				365
				366	if (socket == NULL \|\| socket->status != MBEDTLS_MOCK_SOCKET_CONNECTED) {
				367	return -1;
				368	}
				369
				370	return mbedtls_test_ssl_buffer_get(socket->input, buf, len);
				371	}
				372
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	373	int mbedtls_test_mock_tcp_send_nb(void *ctx,
				374	const unsigned char *buf, size_t len)
				375	{
				376	mbedtls_test_mock_socket socket = (mbedtls_test_mock_socket ) ctx;
				377
				378	if (socket == NULL \|\| socket->status != MBEDTLS_MOCK_SOCKET_CONNECTED) {
				379	return -1;
				380	}
				381
				382	if (socket->output->capacity == socket->output->content_length) {
				383	return MBEDTLS_ERR_SSL_WANT_WRITE;
				384	}
				385
				386	return mbedtls_test_ssl_buffer_put(socket->output, buf, len);
				387	}
				388
				389	int mbedtls_test_mock_tcp_recv_nb(void ctx, unsigned char buf, size_t len)
				390	{
				391	mbedtls_test_mock_socket socket = (mbedtls_test_mock_socket ) ctx;
				392
				393	if (socket == NULL \|\| socket->status != MBEDTLS_MOCK_SOCKET_CONNECTED) {
				394	return -1;
				395	}
				396
				397	if (socket->input->content_length == 0) {
				398	return MBEDTLS_ERR_SSL_WANT_READ;
				399	}
				400
				401	return mbedtls_test_ssl_buffer_get(socket->input, buf, len);
				402	}
				403
				404	void mbedtls_test_message_socket_init(
				405	mbedtls_test_message_socket_context *ctx)
				406	{
				407	ctx->queue_input = NULL;
				408	ctx->queue_output = NULL;
				409	ctx->socket = NULL;
				410	}
				411
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	412	int mbedtls_test_message_socket_setup(
				413	mbedtls_test_ssl_message_queue *queue_input,
				414	mbedtls_test_ssl_message_queue *queue_output,
				415	size_t queue_capacity,
				416	mbedtls_test_mock_socket *socket,
				417	mbedtls_test_message_socket_context *ctx)
				418	{
				419	int ret = mbedtls_test_ssl_message_queue_setup(queue_input, queue_capacity);
				420	if (ret != 0) {
				421	return ret;
				422	}
				423	ctx->queue_input = queue_input;
				424	ctx->queue_output = queue_output;
				425	ctx->socket = socket;
				426	mbedtls_mock_socket_init(socket);
				427
				428	return 0;
				429	}
				430
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	431	void mbedtls_test_message_socket_close(
				432	mbedtls_test_message_socket_context *ctx)
				433	{
				434	if (ctx == NULL) {
				435	return;
				436	}
				437
				438	mbedtls_test_ssl_message_queue_free(ctx->queue_input);
				439	mbedtls_test_mock_socket_close(ctx->socket);
				440	memset(ctx, 0, sizeof(*ctx));
				441	}
				442
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	443	int mbedtls_test_mock_tcp_send_msg(void *ctx,
				444	const unsigned char *buf, size_t len)
				445	{
				446	mbedtls_test_ssl_message_queue *queue;
				447	mbedtls_test_mock_socket *socket;
				448	mbedtls_test_message_socket_context *context =
				449	(mbedtls_test_message_socket_context *) ctx;
				450
				451	if (context == NULL \|\| context->socket == NULL
				452	\|\| context->queue_output == NULL) {
				453	return MBEDTLS_TEST_ERROR_CONTEXT_ERROR;
				454	}
				455
				456	queue = context->queue_output;
				457	socket = context->socket;
				458
				459	if (queue->num >= queue->capacity) {
				460	return MBEDTLS_ERR_SSL_WANT_WRITE;
				461	}
				462
				463	if (mbedtls_test_mock_tcp_send_b(socket, buf, len) != (int) len) {
				464	return MBEDTLS_TEST_ERROR_SEND_FAILED;
				465	}
				466
				467	return mbedtls_test_ssl_message_queue_push_info(queue, len);
				468	}
				469
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	470	int mbedtls_test_mock_tcp_recv_msg(void *ctx,
				471	unsigned char *buf, size_t buf_len)
				472	{
				473	mbedtls_test_ssl_message_queue *queue;
				474	mbedtls_test_mock_socket *socket;
				475	mbedtls_test_message_socket_context *context =
				476	(mbedtls_test_message_socket_context *) ctx;
				477	size_t drop_len = 0;
				478	size_t msg_len;
				479	int ret;
				480
				481	if (context == NULL \|\| context->socket == NULL
				482	\|\| context->queue_input == NULL) {
				483	return MBEDTLS_TEST_ERROR_CONTEXT_ERROR;
				484	}
				485
				486	queue = context->queue_input;
				487	socket = context->socket;
				488
				489	/* Peek first, so that in case of a socket error the data remains in
				490	* the queue. */
				491	ret = mbedtls_test_message_queue_peek_info(queue, buf_len, &msg_len);
				492	if (ret == MBEDTLS_TEST_ERROR_MESSAGE_TRUNCATED) {
				493	/* Calculate how much to drop */
				494	drop_len = msg_len - buf_len;
				495
				496	/* Set the requested message len to be buffer length */
				497	msg_len = buf_len;
				498	} else if (ret != 0) {
				499	return ret;
				500	}
				501
				502	if (mbedtls_test_mock_tcp_recv_b(socket, buf, msg_len) != (int) msg_len) {
				503	return MBEDTLS_TEST_ERROR_RECV_FAILED;
				504	}
				505
				506	if (ret == MBEDTLS_TEST_ERROR_MESSAGE_TRUNCATED) {
				507	/* Drop the remaining part of the message */
				508	if (mbedtls_test_mock_tcp_recv_b(socket, NULL, drop_len) !=
				509	(int) drop_len) {
				510	/* Inconsistent state - part of the message was read,
				511	* and a part couldn't. Not much we can do here, but it should not
				512	* happen in test environment, unless forced manually. */
				513	}
				514	}
				515	mbedtls_test_ssl_message_queue_pop_info(queue, buf_len);
				516
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	517	return (msg_len > INT_MAX) ? INT_MAX : (int) msg_len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	518	}
				519
				520	#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
				521	defined(MBEDTLS_CERTS_C) && \
				522	defined(MBEDTLS_ENTROPY_C) && \
				523	defined(MBEDTLS_CTR_DRBG_C)
				524
				525	/*
				526	* Deinitializes certificates from endpoint represented by \p ep.
				527	*/
Yanray Wang	cd23aff	2023-03-15 16:05:14 +0800	[diff] [blame^]	528	static void test_ssl_endpoint_certificate_free(mbedtls_test_ssl_endpoint *ep)
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	529	{
				530	mbedtls_test_ssl_endpoint_certificate *cert = &(ep->cert);
				531	if (cert != NULL) {
				532	if (cert->ca_cert != NULL) {
				533	mbedtls_x509_crt_free(cert->ca_cert);
				534	mbedtls_free(cert->ca_cert);
				535	cert->ca_cert = NULL;
				536	}
				537	if (cert->cert != NULL) {
				538	mbedtls_x509_crt_free(cert->cert);
				539	mbedtls_free(cert->cert);
				540	cert->cert = NULL;
				541	}
				542	if (cert->pkey != NULL) {
				543	#if defined(MBEDTLS_USE_PSA_CRYPTO)
				544	if (mbedtls_pk_get_type(cert->pkey) == MBEDTLS_PK_OPAQUE) {
				545	mbedtls_svc_key_id_t *key_slot = cert->pkey->pk_ctx;
				546	psa_destroy_key(*key_slot);
				547	}
				548	#endif
				549	mbedtls_pk_free(cert->pkey);
				550	mbedtls_free(cert->pkey);
				551	cert->pkey = NULL;
				552	}
				553	}
				554	}
				555
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	556	int mbedtls_test_ssl_endpoint_certificate_init(mbedtls_test_ssl_endpoint *ep,
				557	int pk_alg)
				558	{
				559	int i = 0;
				560	int ret = -1;
				561	mbedtls_test_ssl_endpoint_certificate *cert = NULL;
				562
				563	if (ep == NULL) {
				564	return MBEDTLS_ERR_SSL_BAD_INPUT_DATA;
				565	}
				566
				567	cert = &(ep->cert);
				568	ASSERT_ALLOC(cert->ca_cert, 1);
				569	ASSERT_ALLOC(cert->cert, 1);
				570	ASSERT_ALLOC(cert->pkey, 1);
				571
				572	mbedtls_x509_crt_init(cert->ca_cert);
				573	mbedtls_x509_crt_init(cert->cert);
				574	mbedtls_pk_init(cert->pkey);
				575
				576	/* Load the trusted CA */
				577
				578	for (i = 0; mbedtls_test_cas_der[i] != NULL; i++) {
				579	ret = mbedtls_x509_crt_parse_der(
				580	cert->ca_cert,
				581	(const unsigned char *) mbedtls_test_cas_der[i],
				582	mbedtls_test_cas_der_len[i]);
				583	TEST_ASSERT(ret == 0);
				584	}
				585
				586	/* Load own certificate and private key */
				587
				588	if (ep->conf.endpoint == MBEDTLS_SSL_IS_SERVER) {
				589	if (pk_alg == MBEDTLS_PK_RSA) {
				590	ret = mbedtls_x509_crt_parse(
				591	cert->cert,
				592	(const unsigned char *) mbedtls_test_srv_crt_rsa_sha256_der,
				593	mbedtls_test_srv_crt_rsa_sha256_der_len);
				594	TEST_ASSERT(ret == 0);
				595
				596	ret = mbedtls_pk_parse_key(
				597	cert->pkey,
				598	(const unsigned char *) mbedtls_test_srv_key_rsa_der,
				599	mbedtls_test_srv_key_rsa_der_len, NULL, 0);
				600	TEST_ASSERT(ret == 0);
				601	} else {
				602	ret = mbedtls_x509_crt_parse(
				603	cert->cert,
				604	(const unsigned char *) mbedtls_test_srv_crt_ec_der,
				605	mbedtls_test_srv_crt_ec_der_len);
				606	TEST_ASSERT(ret == 0);
				607
				608	ret = mbedtls_pk_parse_key(
				609	cert->pkey,
				610	(const unsigned char *) mbedtls_test_srv_key_ec_der,
				611	mbedtls_test_srv_key_ec_der_len, NULL, 0);
				612	TEST_ASSERT(ret == 0);
				613	}
				614	} else {
				615	if (pk_alg == MBEDTLS_PK_RSA) {
				616	ret = mbedtls_x509_crt_parse(
				617	cert->cert,
				618	(const unsigned char *) mbedtls_test_cli_crt_rsa_der,
				619	mbedtls_test_cli_crt_rsa_der_len);
				620	TEST_ASSERT(ret == 0);
				621
				622	ret = mbedtls_pk_parse_key(
				623	cert->pkey,
				624	(const unsigned char *) mbedtls_test_cli_key_rsa_der,
				625	mbedtls_test_cli_key_rsa_der_len, NULL, 0);
				626	TEST_ASSERT(ret == 0);
				627	} else {
				628	ret = mbedtls_x509_crt_parse(
				629	cert->cert,
				630	(const unsigned char *) mbedtls_test_cli_crt_ec_der,
				631	mbedtls_test_cli_crt_ec_len);
				632	TEST_ASSERT(ret == 0);
				633
				634	ret = mbedtls_pk_parse_key(
				635	cert->pkey,
				636	(const unsigned char *) mbedtls_test_cli_key_ec_der,
				637	mbedtls_test_cli_key_ec_der_len, NULL, 0);
				638	TEST_ASSERT(ret == 0);
				639	}
				640	}
				641
				642	mbedtls_ssl_conf_ca_chain(&(ep->conf), cert->ca_cert, NULL);
				643
				644	ret = mbedtls_ssl_conf_own_cert(&(ep->conf), cert->cert,
				645	cert->pkey);
				646	TEST_ASSERT(ret == 0);
				647
				648	exit:
				649	if (ret != 0) {
Yanray Wang	cd23aff	2023-03-15 16:05:14 +0800	[diff] [blame^]	650	test_ssl_endpoint_certificate_free(ep);
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	651	}
				652
				653	return ret;
				654	}
				655
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	656	int mbedtls_test_ssl_endpoint_init(
				657	mbedtls_test_ssl_endpoint *ep, int endpoint_type, int pk_alg,
				658	mbedtls_test_message_socket_context *dtls_context,
				659	mbedtls_test_ssl_message_queue *input_queue,
				660	mbedtls_test_ssl_message_queue *output_queue,
				661	const mbedtls_ecp_group_id *curves)
				662	{
				663	int ret = -1;
				664
				665	if (dtls_context != NULL &&
				666	(input_queue == NULL \|\| output_queue == NULL)) {
				667	return MBEDTLS_ERR_SSL_BAD_INPUT_DATA;
				668	}
				669
				670	if (ep == NULL) {
				671	return MBEDTLS_ERR_SSL_BAD_INPUT_DATA;
				672	}
				673
				674	memset(ep, 0, sizeof(*ep));
				675
				676	ep->name = (endpoint_type == MBEDTLS_SSL_IS_SERVER) ? "Server" : "Client";
				677
				678	mbedtls_ssl_init(&(ep->ssl));
				679	mbedtls_ssl_config_init(&(ep->conf));
				680	mbedtls_ctr_drbg_init(&(ep->ctr_drbg));
				681	mbedtls_ssl_conf_rng(&(ep->conf),
				682	mbedtls_ctr_drbg_random,
				683	&(ep->ctr_drbg));
				684	mbedtls_entropy_init(&(ep->entropy));
				685	if (dtls_context != NULL) {
				686	TEST_ASSERT(mbedtls_test_message_socket_setup(input_queue, output_queue,
				687	100, &(ep->socket),
				688	dtls_context) == 0);
				689	} else {
				690	mbedtls_mock_socket_init(&(ep->socket));
				691	}
				692
				693	ret = mbedtls_ctr_drbg_seed(&(ep->ctr_drbg), mbedtls_entropy_func,
				694	&(ep->entropy),
				695	(const unsigned char *) (ep->name),
				696	strlen(ep->name));
				697	TEST_ASSERT(ret == 0);
				698
				699	/* Non-blocking callbacks without timeout */
				700	if (dtls_context != NULL) {
				701	mbedtls_ssl_set_bio(&(ep->ssl), dtls_context,
				702	mbedtls_test_mock_tcp_send_msg,
				703	mbedtls_test_mock_tcp_recv_msg,
				704	NULL);
				705	} else {
				706	mbedtls_ssl_set_bio(&(ep->ssl), &(ep->socket),
				707	mbedtls_test_mock_tcp_send_nb,
				708	mbedtls_test_mock_tcp_recv_nb,
				709	NULL);
				710	}
				711
				712	ret = mbedtls_ssl_config_defaults(&(ep->conf), endpoint_type,
				713	(dtls_context != NULL) ?
				714	MBEDTLS_SSL_TRANSPORT_DATAGRAM :
				715	MBEDTLS_SSL_TRANSPORT_STREAM,
				716	MBEDTLS_SSL_PRESET_DEFAULT);
				717	TEST_ASSERT(ret == 0);
				718
				719	#if defined(MBEDTLS_ECP_C)
				720	if (curves != NULL) {
				721	mbedtls_ssl_conf_curves(&(ep->conf), curves);
				722	}
				723	#else
				724	(void) curves;
				725	#endif
				726
				727	ret = mbedtls_ssl_setup(&(ep->ssl), &(ep->conf));
				728	TEST_ASSERT(ret == 0);
				729
				730	#if defined(MBEDTLS_SSL_PROTO_DTLS) && defined(MBEDTLS_SSL_SRV_C)
				731	if (endpoint_type == MBEDTLS_SSL_IS_SERVER && dtls_context != NULL) {
				732	mbedtls_ssl_conf_dtls_cookies(&(ep->conf), NULL, NULL, NULL);
				733	}
				734	#endif
				735
				736	ret = mbedtls_test_ssl_endpoint_certificate_init(ep, pk_alg);
				737	TEST_ASSERT(ret == 0);
				738
				739	exit:
				740	return ret;
				741	}
				742
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	743	void mbedtls_test_ssl_endpoint_free(
				744	mbedtls_test_ssl_endpoint *ep,
				745	mbedtls_test_message_socket_context *context)
				746	{
Yanray Wang	cd23aff	2023-03-15 16:05:14 +0800	[diff] [blame^]	747	test_ssl_endpoint_certificate_free(ep);
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	748
				749	mbedtls_ssl_free(&(ep->ssl));
				750	mbedtls_ssl_config_free(&(ep->conf));
				751	mbedtls_ctr_drbg_free(&(ep->ctr_drbg));
				752	mbedtls_entropy_free(&(ep->entropy));
				753
				754	if (context != NULL) {
				755	mbedtls_test_message_socket_close(context);
				756	} else {
				757	mbedtls_test_mock_socket_close(&(ep->socket));
				758	}
				759	}
				760
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	761	int mbedtls_test_move_handshake_to_state(mbedtls_ssl_context *ssl,
				762	mbedtls_ssl_context *second_ssl,
				763	int state)
				764	{
				765	enum { BUFFSIZE = 1024 };
				766	int max_steps = 1000;
				767	int ret = 0;
				768
				769	if (ssl == NULL \|\| second_ssl == NULL) {
				770	return MBEDTLS_ERR_SSL_BAD_INPUT_DATA;
				771	}
				772
				773	/* Perform communication via connected sockets */
				774	while ((ssl->state != state) && (--max_steps >= 0)) {
				775	/* If /p second_ssl ends the handshake procedure before /p ssl then
				776	* there is no need to call the next step */
				777	if (second_ssl->state != MBEDTLS_SSL_HANDSHAKE_OVER) {
				778	ret = mbedtls_ssl_handshake_step(second_ssl);
				779	if (ret != 0 && ret != MBEDTLS_ERR_SSL_WANT_READ &&
				780	ret != MBEDTLS_ERR_SSL_WANT_WRITE) {
				781	return ret;
				782	}
				783	}
				784
				785	/* We only care about the \p ssl state and returns, so we call it last,
				786	* to leave the iteration as soon as the state is as expected. */
				787	ret = mbedtls_ssl_handshake_step(ssl);
				788	if (ret != 0 && ret != MBEDTLS_ERR_SSL_WANT_READ &&
				789	ret != MBEDTLS_ERR_SSL_WANT_WRITE) {
				790	return ret;
				791	}
				792	}
				793
				794	return (max_steps >= 0) ? ret : -1;
				795	}
				796
Yanray Wang	1ef77c0	2023-03-14 16:59:00 +0800	[diff] [blame]	797	#endif /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C &&
				798	MBEDTLS_ENTROPY_C && MBEDTLS_CTR_DRBG_C */
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	799
				800	/*
				801	* Write application data. Increase write counter if necessary.
				802	*/
				803	int mbedtls_ssl_write_fragment(mbedtls_ssl_context *ssl,
				804	unsigned char *buf, int buf_len,
				805	int *written,
				806	const int expected_fragments)
				807	{
				808	/* Verify that calling mbedtls_ssl_write with a NULL buffer and zero length is
				809	* a valid no-op for TLS connections. */
				810	if (ssl->conf->transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
				811	TEST_ASSERT(mbedtls_ssl_write(ssl, NULL, 0) == 0);
				812	}
				813
				814	int ret = mbedtls_ssl_write(ssl, buf + written, buf_len - written);
				815	if (ret > 0) {
				816	*written += ret;
				817	}
				818
				819	if (expected_fragments == 0) {
				820	/* Used for DTLS and the message size larger than MFL. In that case
				821	* the message can not be fragmented and the library should return
				822	* MBEDTLS_ERR_SSL_BAD_INPUT_DATA error. This error must be returned
				823	* to prevent a dead loop inside mbedtls_exchange_data(). */
				824	return ret;
				825	} else if (expected_fragments == 1) {
				826	/* Used for TLS/DTLS and the message size lower than MFL */
				827	TEST_ASSERT(ret == buf_len \|\|
				828	ret == MBEDTLS_ERR_SSL_WANT_READ \|\|
				829	ret == MBEDTLS_ERR_SSL_WANT_WRITE);
				830	} else {
				831	/* Used for TLS and the message size larger than MFL */
				832	TEST_ASSERT(expected_fragments > 1);
				833	TEST_ASSERT((ret >= 0 && ret <= buf_len) \|\|
				834	ret == MBEDTLS_ERR_SSL_WANT_READ \|\|
				835	ret == MBEDTLS_ERR_SSL_WANT_WRITE);
				836	}
				837
				838	return 0;
				839
				840	exit:
				841	/* Some of the tests failed */
				842	return -1;
				843	}
				844
				845	/*
				846	* Read application data and increase read counter and fragments counter
				847	* if necessary.
				848	*/
				849	int mbedtls_ssl_read_fragment(mbedtls_ssl_context *ssl,
				850	unsigned char *buf, int buf_len,
				851	int read, int fragments,
				852	const int expected_fragments)
				853	{
				854	/* Verify that calling mbedtls_ssl_write with a NULL buffer and zero length is
				855	* a valid no-op for TLS connections. */
				856	if (ssl->conf->transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
				857	TEST_ASSERT(mbedtls_ssl_read(ssl, NULL, 0) == 0);
				858	}
				859
				860	int ret = mbedtls_ssl_read(ssl, buf + read, buf_len - read);
				861	if (ret > 0) {
				862	(*fragments)++;
				863	*read += ret;
				864	}
				865
				866	if (expected_fragments == 0) {
				867	TEST_ASSERT(ret == 0);
				868	} else if (expected_fragments == 1) {
				869	TEST_ASSERT(ret == buf_len \|\|
				870	ret == MBEDTLS_ERR_SSL_WANT_READ \|\|
				871	ret == MBEDTLS_ERR_SSL_WANT_WRITE);
				872	} else {
				873	TEST_ASSERT(expected_fragments > 1);
				874	TEST_ASSERT((ret >= 0 && ret <= buf_len) \|\|
				875	ret == MBEDTLS_ERR_SSL_WANT_READ \|\|
				876	ret == MBEDTLS_ERR_SSL_WANT_WRITE);
				877	}
				878
				879	return 0;
				880
				881	exit:
				882	/* Some of the tests failed */
				883	return -1;
				884	}
				885
Yanray Wang	b4ef9a2	2023-03-16 12:04:49 +0800	[diff] [blame]	886	#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
				887	defined(MBEDTLS_CERTS_C) && \
				888	defined(MBEDTLS_ENTROPY_C) && \
				889	defined(MBEDTLS_CTR_DRBG_C)
				890	static void set_ciphersuite(mbedtls_ssl_config conf, const char cipher,
				891	int *forced_ciphersuite)
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	892	{
				893	const mbedtls_ssl_ciphersuite_t *ciphersuite_info;
				894	forced_ciphersuite[0] = mbedtls_ssl_get_ciphersuite_id(cipher);
				895	forced_ciphersuite[1] = 0;
				896
				897	ciphersuite_info =
				898	mbedtls_ssl_ciphersuite_from_id(forced_ciphersuite[0]);
				899
				900	TEST_ASSERT(ciphersuite_info != NULL);
				901	TEST_ASSERT(ciphersuite_info->min_minor_ver <= conf->max_minor_ver);
				902	TEST_ASSERT(ciphersuite_info->max_minor_ver >= conf->min_minor_ver);
				903
				904	if (conf->max_minor_ver > ciphersuite_info->max_minor_ver) {
				905	conf->max_minor_ver = ciphersuite_info->max_minor_ver;
				906	}
				907	if (conf->min_minor_ver < ciphersuite_info->min_minor_ver) {
				908	conf->min_minor_ver = ciphersuite_info->min_minor_ver;
				909	}
				910
				911	mbedtls_ssl_conf_ciphersuites(conf, forced_ciphersuite);
				912
				913	exit:
				914	return;
				915	}
Yanray Wang	b4ef9a2	2023-03-16 12:04:49 +0800	[diff] [blame]	916	#endif /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C &&
				917	MBEDTLS_ENTROPY_C && MBEDTLS_CTR_DRBG_C */
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	918
Yanray Wang	b4ef9a2	2023-03-16 12:04:49 +0800	[diff] [blame]	919	#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
				920	defined(MBEDTLS_CERTS_C) && \
				921	defined(MBEDTLS_ENTROPY_C) && \
				922	defined(MBEDTLS_CTR_DRBG_C) && \
				923	defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
				924	static int psk_dummy_callback(void p_info, mbedtls_ssl_context ssl,
				925	const unsigned char *name, size_t name_len)
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	926	{
				927	(void) p_info;
				928	(void) ssl;
				929	(void) name;
				930	(void) name_len;
				931
				932	return 0;
				933	}
Yanray Wang	b4ef9a2	2023-03-16 12:04:49 +0800	[diff] [blame]	934	#endif /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C &&
				935	MBEDTLS_ENTROPY_C && MBEDTLS_CTR_DRBG_C &&
				936	MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED */
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	937
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	938	int mbedtls_test_ssl_build_transforms(mbedtls_ssl_transform *t_in,
				939	mbedtls_ssl_transform *t_out,
				940	int cipher_type, int hash_id,
				941	int etm, int tag_mode, int ver,
				942	size_t cid0_len,
				943	size_t cid1_len)
				944	{
				945	mbedtls_cipher_info_t const *cipher_info;
				946	int ret = 0;
				947
				948	size_t keylen, maclen, ivlen;
				949	unsigned char key0 = NULL, key1 = NULL;
				950	unsigned char md0 = NULL, md1 = NULL;
				951	unsigned char iv_enc[16], iv_dec[16];
				952
				953	#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
				954	unsigned char cid0[SSL_CID_LEN_MIN];
				955	unsigned char cid1[SSL_CID_LEN_MIN];
				956
				957	mbedtls_test_rnd_std_rand(NULL, cid0, sizeof(cid0));
				958	mbedtls_test_rnd_std_rand(NULL, cid1, sizeof(cid1));
				959	#else
				960	((void) cid0_len);
				961	((void) cid1_len);
				962	#endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
				963
				964	maclen = 0;
				965
				966	/* Pick cipher */
				967	cipher_info = mbedtls_cipher_info_from_type(cipher_type);
				968	CHK(cipher_info != NULL);
				969	CHK(cipher_info->iv_size <= 16);
				970	CHK(cipher_info->key_bitlen % 8 == 0);
				971
				972	/* Pick keys */
				973	keylen = cipher_info->key_bitlen / 8;
				974	/* Allocate `keylen + 1` bytes to ensure that we get
				975	* a non-NULL pointers from `mbedtls_calloc` even if
				976	* `keylen == 0` in the case of the NULL cipher. */
				977	CHK((key0 = mbedtls_calloc(1, keylen + 1)) != NULL);
				978	CHK((key1 = mbedtls_calloc(1, keylen + 1)) != NULL);
				979	memset(key0, 0x1, keylen);
				980	memset(key1, 0x2, keylen);
				981
				982	/* Setup cipher contexts */
				983	CHK(mbedtls_cipher_setup(&t_in->cipher_ctx_enc, cipher_info) == 0);
				984	CHK(mbedtls_cipher_setup(&t_in->cipher_ctx_dec, cipher_info) == 0);
				985	CHK(mbedtls_cipher_setup(&t_out->cipher_ctx_enc, cipher_info) == 0);
				986	CHK(mbedtls_cipher_setup(&t_out->cipher_ctx_dec, cipher_info) == 0);
				987
				988	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				989	if (cipher_info->mode == MBEDTLS_MODE_CBC) {
				990	CHK(mbedtls_cipher_set_padding_mode(&t_in->cipher_ctx_enc,
				991	MBEDTLS_PADDING_NONE) == 0);
				992	CHK(mbedtls_cipher_set_padding_mode(&t_in->cipher_ctx_dec,
				993	MBEDTLS_PADDING_NONE) == 0);
				994	CHK(mbedtls_cipher_set_padding_mode(&t_out->cipher_ctx_enc,
				995	MBEDTLS_PADDING_NONE) == 0);
				996	CHK(mbedtls_cipher_set_padding_mode(&t_out->cipher_ctx_dec,
				997	MBEDTLS_PADDING_NONE) == 0);
				998	}
				999	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1000
				1001	CHK(mbedtls_cipher_setkey(&t_in->cipher_ctx_enc, key0,
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	1002	(keylen << 3 > INT_MAX) ? INT_MAX : (int) keylen << 3,
				1003	MBEDTLS_ENCRYPT)
				1004	== 0);
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1005	CHK(mbedtls_cipher_setkey(&t_in->cipher_ctx_dec, key1,
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	1006	(keylen << 3 > INT_MAX) ? INT_MAX : (int) keylen << 3,
				1007	MBEDTLS_DECRYPT)
				1008	== 0);
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1009	CHK(mbedtls_cipher_setkey(&t_out->cipher_ctx_enc, key1,
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	1010	(keylen << 3 > INT_MAX) ? INT_MAX : (int) keylen << 3,
				1011	MBEDTLS_ENCRYPT)
				1012	== 0);
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1013	CHK(mbedtls_cipher_setkey(&t_out->cipher_ctx_dec, key0,
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	1014	(keylen << 3 > INT_MAX) ? INT_MAX : (int) keylen << 3,
				1015	MBEDTLS_DECRYPT)
				1016	== 0);
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1017
				1018	/* Setup MAC contexts */
				1019	#if defined(MBEDTLS_SSL_SOME_MODES_USE_MAC)
				1020	if (cipher_info->mode == MBEDTLS_MODE_CBC \|\|
				1021	cipher_info->mode == MBEDTLS_MODE_STREAM) {
				1022	mbedtls_md_info_t const *md_info;
				1023
				1024	/* Pick hash */
				1025	md_info = mbedtls_md_info_from_type(hash_id);
				1026	CHK(md_info != NULL);
				1027
				1028	/* Pick hash keys */
				1029	maclen = mbedtls_md_get_size(md_info);
				1030	CHK((md0 = mbedtls_calloc(1, maclen)) != NULL);
				1031	CHK((md1 = mbedtls_calloc(1, maclen)) != NULL);
				1032	memset(md0, 0x5, maclen);
				1033	memset(md1, 0x6, maclen);
				1034
				1035	CHK(mbedtls_md_setup(&t_out->md_ctx_enc, md_info, 1) == 0);
				1036	CHK(mbedtls_md_setup(&t_out->md_ctx_dec, md_info, 1) == 0);
				1037	CHK(mbedtls_md_setup(&t_in->md_ctx_enc, md_info, 1) == 0);
				1038	CHK(mbedtls_md_setup(&t_in->md_ctx_dec, md_info, 1) == 0);
				1039
				1040	if (ver > MBEDTLS_SSL_MINOR_VERSION_0) {
				1041	CHK(mbedtls_md_hmac_starts(&t_in->md_ctx_enc,
				1042	md0, maclen) == 0);
				1043	CHK(mbedtls_md_hmac_starts(&t_in->md_ctx_dec,
				1044	md1, maclen) == 0);
				1045	CHK(mbedtls_md_hmac_starts(&t_out->md_ctx_enc,
				1046	md1, maclen) == 0);
				1047	CHK(mbedtls_md_hmac_starts(&t_out->md_ctx_dec,
				1048	md0, maclen) == 0);
				1049	}
				1050	#if defined(MBEDTLS_SSL_PROTO_SSL3)
				1051	else {
				1052	memcpy(&t_in->mac_enc, md0, maclen);
				1053	memcpy(&t_in->mac_dec, md1, maclen);
				1054	memcpy(&t_out->mac_enc, md1, maclen);
				1055	memcpy(&t_out->mac_dec, md0, maclen);
				1056	}
				1057	#endif
				1058	}
				1059	#else
				1060	((void) hash_id);
				1061	#endif /* MBEDTLS_SSL_SOME_MODES_USE_MAC */
				1062
				1063
				1064	/* Pick IV's (regardless of whether they
				1065	* are being used by the transform). */
				1066	ivlen = cipher_info->iv_size;
				1067	memset(iv_enc, 0x3, sizeof(iv_enc));
				1068	memset(iv_dec, 0x4, sizeof(iv_dec));
				1069
				1070	/*
				1071	* Setup transforms
				1072	*/
				1073
				1074	#if defined(MBEDTLS_SSL_ENCRYPT_THEN_MAC) && \
				1075	defined(MBEDTLS_SSL_SOME_MODES_USE_MAC)
				1076	t_out->encrypt_then_mac = etm;
				1077	t_in->encrypt_then_mac = etm;
				1078	#else
				1079	((void) etm);
				1080	#endif
				1081
				1082	t_out->minor_ver = ver;
				1083	t_in->minor_ver = ver;
				1084	t_out->ivlen = ivlen;
				1085	t_in->ivlen = ivlen;
				1086
				1087	switch (cipher_info->mode) {
				1088	case MBEDTLS_MODE_GCM:
				1089	case MBEDTLS_MODE_CCM:
				1090	#if defined(MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL)
				1091	if (ver == MBEDTLS_SSL_MINOR_VERSION_4) {
				1092	t_out->fixed_ivlen = 12;
				1093	t_in->fixed_ivlen = 12;
				1094	} else
				1095	#endif /* MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL */
				1096	{
				1097	t_out->fixed_ivlen = 4;
				1098	t_in->fixed_ivlen = 4;
				1099	}
				1100	t_out->maclen = 0;
				1101	t_in->maclen = 0;
				1102	switch (tag_mode) {
				1103	case 0: /* Full tag */
				1104	t_out->taglen = 16;
				1105	t_in->taglen = 16;
				1106	break;
				1107	case 1: /* Partial tag */
				1108	t_out->taglen = 8;
				1109	t_in->taglen = 8;
				1110	break;
				1111	default:
				1112	ret = 1;
				1113	goto cleanup;
				1114	}
				1115	break;
				1116
				1117	case MBEDTLS_MODE_CHACHAPOLY:
				1118	t_out->fixed_ivlen = 12;
				1119	t_in->fixed_ivlen = 12;
				1120	t_out->maclen = 0;
				1121	t_in->maclen = 0;
				1122	switch (tag_mode) {
				1123	case 0: /* Full tag */
				1124	t_out->taglen = 16;
				1125	t_in->taglen = 16;
				1126	break;
				1127	case 1: /* Partial tag */
				1128	t_out->taglen = 8;
				1129	t_in->taglen = 8;
				1130	break;
				1131	default:
				1132	ret = 1;
				1133	goto cleanup;
				1134	}
				1135	break;
				1136
				1137	case MBEDTLS_MODE_STREAM:
				1138	case MBEDTLS_MODE_CBC:
				1139	t_out->fixed_ivlen = 0; /* redundant, must be 0 */
				1140	t_in->fixed_ivlen = 0; /* redundant, must be 0 */
				1141	t_out->taglen = 0;
				1142	t_in->taglen = 0;
				1143	switch (tag_mode) {
				1144	case 0: /* Full tag */
				1145	t_out->maclen = maclen;
				1146	t_in->maclen = maclen;
				1147	break;
				1148	case 1: /* Partial tag */
				1149	t_out->maclen = 10;
				1150	t_in->maclen = 10;
				1151	break;
				1152	default:
				1153	ret = 1;
				1154	goto cleanup;
				1155	}
				1156	break;
				1157	default:
				1158	ret = 1;
				1159	goto cleanup;
				1160	break;
				1161	}
				1162
				1163	/* Setup IV's */
				1164
				1165	memcpy(&t_in->iv_dec, iv_dec, sizeof(iv_dec));
				1166	memcpy(&t_in->iv_enc, iv_enc, sizeof(iv_enc));
				1167	memcpy(&t_out->iv_dec, iv_enc, sizeof(iv_enc));
				1168	memcpy(&t_out->iv_enc, iv_dec, sizeof(iv_dec));
				1169
				1170	#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
				1171	/* Add CID */
				1172	memcpy(&t_in->in_cid, cid0, cid0_len);
				1173	memcpy(&t_in->out_cid, cid1, cid1_len);
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	1174	t_in->in_cid_len = (uint8_t) cid0_len;
				1175	t_in->out_cid_len = (uint8_t) cid1_len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1176	memcpy(&t_out->in_cid, cid1, cid1_len);
				1177	memcpy(&t_out->out_cid, cid0, cid0_len);
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame]	1178	t_out->in_cid_len = (uint8_t) cid1_len;
				1179	t_out->out_cid_len = (uint8_t) cid0_len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1180	#endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
				1181
				1182	cleanup:
				1183
				1184	mbedtls_free(key0);
				1185	mbedtls_free(key1);
				1186
				1187	mbedtls_free(md0);
				1188	mbedtls_free(md1);
				1189
				1190	return ret;
				1191	}
				1192
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1193	int mbedtls_test_ssl_populate_session(mbedtls_ssl_session *session,
				1194	int ticket_len,
				1195	const char *crt_file)
				1196	{
				1197	#if defined(MBEDTLS_HAVE_TIME)
				1198	session->start = mbedtls_time(NULL) - 42;
				1199	#endif
				1200	session->ciphersuite = 0xabcd;
				1201	session->compression = 1;
				1202	session->id_len = sizeof(session->id);
				1203	memset(session->id, 66, session->id_len);
				1204	memset(session->master, 17, sizeof(session->master));
				1205
				1206	#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
				1207	defined(MBEDTLS_CERTS_C) && \
				1208	defined(MBEDTLS_FS_IO)
				1209	if (strlen(crt_file) != 0) {
				1210	mbedtls_x509_crt tmp_crt;
				1211	int ret;
				1212
				1213	mbedtls_x509_crt_init(&tmp_crt);
				1214	ret = mbedtls_x509_crt_parse_file(&tmp_crt, crt_file);
				1215	if (ret != 0) {
				1216	return ret;
				1217	}
				1218
				1219	#if defined(MBEDTLS_SSL_KEEP_PEER_CERTIFICATE)
				1220	/* Move temporary CRT. */
				1221	session->peer_cert = mbedtls_calloc(1, sizeof(*session->peer_cert));
				1222	if (session->peer_cert == NULL) {
				1223	return -1;
				1224	}
				1225	*session->peer_cert = tmp_crt;
				1226	memset(&tmp_crt, 0, sizeof(tmp_crt));
				1227	#else /* MBEDTLS_SSL_KEEP_PEER_CERTIFICATE */
				1228	/* Calculate digest of temporary CRT. */
				1229	session->peer_cert_digest =
				1230	mbedtls_calloc(1, MBEDTLS_SSL_PEER_CERT_DIGEST_DFL_LEN);
				1231	if (session->peer_cert_digest == NULL) {
				1232	return -1;
				1233	}
				1234	ret = mbedtls_md(mbedtls_md_info_from_type(
				1235	MBEDTLS_SSL_PEER_CERT_DIGEST_DFL_TYPE),
				1236	tmp_crt.raw.p, tmp_crt.raw.len,
				1237	session->peer_cert_digest);
				1238	if (ret != 0) {
				1239	return ret;
				1240	}
				1241	session->peer_cert_digest_type =
				1242	MBEDTLS_SSL_PEER_CERT_DIGEST_DFL_TYPE;
				1243	session->peer_cert_digest_len =
				1244	MBEDTLS_SSL_PEER_CERT_DIGEST_DFL_LEN;
				1245	#endif /* MBEDTLS_SSL_KEEP_PEER_CERTIFICATE */
				1246
				1247	mbedtls_x509_crt_free(&tmp_crt);
				1248	}
				1249	#else /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C && MBEDTLS_FS_IO */
				1250	(void) crt_file;
				1251	#endif /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C && MBEDTLS_FS_IO */
				1252	session->verify_result = 0xdeadbeef;
				1253
				1254	#if defined(MBEDTLS_SSL_SESSION_TICKETS) && defined(MBEDTLS_SSL_CLI_C)
				1255	if (ticket_len != 0) {
				1256	session->ticket = mbedtls_calloc(1, ticket_len);
				1257	if (session->ticket == NULL) {
				1258	return -1;
				1259	}
				1260	memset(session->ticket, 33, ticket_len);
				1261	}
				1262	session->ticket_len = ticket_len;
				1263	session->ticket_lifetime = 86401;
				1264	#else
				1265	(void) ticket_len;
				1266	#endif
				1267
				1268	#if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
				1269	session->mfl_code = 1;
				1270	#endif
				1271	#if defined(MBEDTLS_SSL_TRUNCATED_HMAC)
				1272	session->trunc_hmac = 1;
				1273	#endif
				1274	#if defined(MBEDTLS_SSL_ENCRYPT_THEN_MAC)
				1275	session->encrypt_then_mac = 1;
				1276	#endif
				1277
				1278	return 0;
				1279	}
				1280
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1281	int mbedtls_exchange_data(mbedtls_ssl_context *ssl_1,
				1282	int msg_len_1, const int expected_fragments_1,
				1283	mbedtls_ssl_context *ssl_2,
				1284	int msg_len_2, const int expected_fragments_2)
				1285	{
				1286	unsigned char *msg_buf_1 = malloc(msg_len_1);
				1287	unsigned char *msg_buf_2 = malloc(msg_len_2);
				1288	unsigned char *in_buf_1 = malloc(msg_len_2);
				1289	unsigned char *in_buf_2 = malloc(msg_len_1);
				1290	int msg_type, ret = -1;
				1291
				1292	/* Perform this test with two message types. At first use a message
				1293	* consisting of only 0x00 for the client and only 0xFF for the server.
				1294	* At the second time use message with generated data */
				1295	for (msg_type = 0; msg_type < 2; msg_type++) {
				1296	int written_1 = 0;
				1297	int written_2 = 0;
				1298	int read_1 = 0;
				1299	int read_2 = 0;
				1300	int fragments_1 = 0;
				1301	int fragments_2 = 0;
				1302
				1303	if (msg_type == 0) {
				1304	memset(msg_buf_1, 0x00, msg_len_1);
				1305	memset(msg_buf_2, 0xff, msg_len_2);
				1306	} else {
				1307	int i, j = 0;
				1308	for (i = 0; i < msg_len_1; i++) {
				1309	msg_buf_1[i] = j++ & 0xFF;
				1310	}
				1311	for (i = 0; i < msg_len_2; i++) {
				1312	msg_buf_2[i] = (j -= 5) & 0xFF;
				1313	}
				1314	}
				1315
				1316	while (read_1 < msg_len_2 \|\| read_2 < msg_len_1) {
				1317	/* ssl_1 sending */
				1318	if (msg_len_1 > written_1) {
				1319	ret = mbedtls_ssl_write_fragment(ssl_1, msg_buf_1,
				1320	msg_len_1, &written_1,
				1321	expected_fragments_1);
				1322	if (expected_fragments_1 == 0) {
				1323	/* This error is expected when the message is too large and
				1324	* cannot be fragmented */
				1325	TEST_ASSERT(ret == MBEDTLS_ERR_SSL_BAD_INPUT_DATA);
				1326	msg_len_1 = 0;
				1327	} else {
				1328	TEST_ASSERT(ret == 0);
				1329	}
				1330	}
				1331
				1332	/* ssl_2 sending */
				1333	if (msg_len_2 > written_2) {
				1334	ret = mbedtls_ssl_write_fragment(ssl_2, msg_buf_2,
				1335	msg_len_2, &written_2,
				1336	expected_fragments_2);
				1337	if (expected_fragments_2 == 0) {
				1338	/* This error is expected when the message is too large and
				1339	* cannot be fragmented */
				1340	TEST_ASSERT(ret == MBEDTLS_ERR_SSL_BAD_INPUT_DATA);
				1341	msg_len_2 = 0;
				1342	} else {
				1343	TEST_ASSERT(ret == 0);
				1344	}
				1345	}
				1346
				1347	/* ssl_1 reading */
				1348	if (read_1 < msg_len_2) {
				1349	ret = mbedtls_ssl_read_fragment(ssl_1, in_buf_1,
				1350	msg_len_2, &read_1,
				1351	&fragments_2,
				1352	expected_fragments_2);
				1353	TEST_ASSERT(ret == 0);
				1354	}
				1355
				1356	/* ssl_2 reading */
				1357	if (read_2 < msg_len_1) {
				1358	ret = mbedtls_ssl_read_fragment(ssl_2, in_buf_2,
				1359	msg_len_1, &read_2,
				1360	&fragments_1,
				1361	expected_fragments_1);
				1362	TEST_ASSERT(ret == 0);
				1363	}
				1364	}
				1365
				1366	ret = -1;
				1367	TEST_ASSERT(0 == memcmp(msg_buf_1, in_buf_2, msg_len_1));
				1368	TEST_ASSERT(0 == memcmp(msg_buf_2, in_buf_1, msg_len_2));
				1369	TEST_ASSERT(fragments_1 == expected_fragments_1);
				1370	TEST_ASSERT(fragments_2 == expected_fragments_2);
				1371	}
				1372
				1373	ret = 0;
				1374
				1375	exit:
				1376	free(msg_buf_1);
				1377	free(in_buf_1);
				1378	free(msg_buf_2);
				1379	free(in_buf_2);
				1380
				1381	return ret;
				1382	}
				1383
				1384	/*
				1385	* Perform data exchanging between \p ssl_1 and \p ssl_2. Both of endpoints
				1386	* must be initialized and connected beforehand.
				1387	*
				1388	* \retval 0 on success, otherwise error code.
				1389	*/
Yanray Wang	b4ef9a2	2023-03-16 12:04:49 +0800	[diff] [blame]	1390	#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
				1391	defined(MBEDTLS_CERTS_C) && \
				1392	defined(MBEDTLS_ENTROPY_C) && \
				1393	defined(MBEDTLS_CTR_DRBG_C) && \
				1394	(defined(MBEDTLS_SSL_RENEGOTIATION) \|\| \
				1395	defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH))
				1396	static int exchange_data(mbedtls_ssl_context *ssl_1,
				1397	mbedtls_ssl_context *ssl_2)
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1398	{
				1399	return mbedtls_exchange_data(ssl_1, 256, 1,
				1400	ssl_2, 256, 1);
				1401	}
Yanray Wang	b4ef9a2	2023-03-16 12:04:49 +0800	[diff] [blame]	1402	#endif /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C &&
				1403	MBEDTLS_ENTROPY_C && MBEDTLS_CTR_DRBG_C &&
				1404	(MBEDTLS_SSL_RENEGOTIATION \|\|
				1405	MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH) */
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1406
				1407	#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
Yanray Wang	b4ef9a2	2023-03-16 12:04:49 +0800	[diff] [blame]	1408	defined(MBEDTLS_CERTS_C) && \
				1409	defined(MBEDTLS_ENTROPY_C) && \
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1410	defined(MBEDTLS_CTR_DRBG_C)
				1411	void mbedtls_test_ssl_perform_handshake(
				1412	mbedtls_test_handshake_test_options *options)
				1413	{
				1414	/* forced_ciphersuite needs to last until the end of the handshake */
				1415	int forced_ciphersuite[2];
				1416	enum { BUFFSIZE = 17000 };
				1417	mbedtls_test_ssl_endpoint client, server;
				1418	#if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
				1419	const char *psk_identity = "foo";
				1420	#endif
				1421	#if defined(MBEDTLS_TIMING_C)
				1422	mbedtls_timing_delay_context timer_client, timer_server;
				1423	#endif
				1424	#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
				1425	unsigned char *context_buf = NULL;
				1426	size_t context_buf_len;
				1427	#endif
				1428	#if defined(MBEDTLS_SSL_RENEGOTIATION)
				1429	int ret = -1;
				1430	#endif
				1431	int expected_handshake_result = 0;
				1432
				1433	USE_PSA_INIT();
				1434	mbedtls_platform_zeroize(&client, sizeof(client));
				1435	mbedtls_platform_zeroize(&server, sizeof(server));
				1436
				1437	mbedtls_test_ssl_message_queue server_queue, client_queue;
				1438	mbedtls_test_message_socket_context server_context, client_context;
				1439	mbedtls_test_message_socket_init(&server_context);
				1440	mbedtls_test_message_socket_init(&client_context);
				1441
				1442	/* Client side */
				1443	if (options->dtls != 0) {
				1444	TEST_ASSERT(mbedtls_test_ssl_endpoint_init(&client,
				1445	MBEDTLS_SSL_IS_CLIENT,
				1446	options->pk_alg,
				1447	&client_context,
				1448	&client_queue,
				1449	&server_queue, NULL) == 0);
				1450	#if defined(MBEDTLS_TIMING_C)
				1451	mbedtls_ssl_set_timer_cb(&client.ssl, &timer_client,
				1452	mbedtls_timing_set_delay,
				1453	mbedtls_timing_get_delay);
				1454	#endif
				1455	} else {
				1456	TEST_ASSERT(mbedtls_test_ssl_endpoint_init(&client,
				1457	MBEDTLS_SSL_IS_CLIENT,
				1458	options->pk_alg, NULL, NULL,
				1459	NULL, NULL) == 0);
				1460	}
				1461
				1462	if (options->client_min_version != TEST_SSL_MINOR_VERSION_NONE) {
				1463	mbedtls_ssl_conf_min_version(&client.conf, MBEDTLS_SSL_MAJOR_VERSION_3,
				1464	options->client_min_version);
				1465	}
				1466
				1467	if (options->client_max_version != TEST_SSL_MINOR_VERSION_NONE) {
				1468	mbedtls_ssl_conf_max_version(&client.conf, MBEDTLS_SSL_MAJOR_VERSION_3,
				1469	options->client_max_version);
				1470	}
				1471
				1472	if (strlen(options->cipher) > 0) {
				1473	set_ciphersuite(&client.conf, options->cipher, forced_ciphersuite);
				1474	}
				1475
				1476	#if defined(MBEDTLS_DEBUG_C)
				1477	if (options->cli_log_fun) {
				1478	mbedtls_debug_set_threshold(4);
				1479	mbedtls_ssl_conf_dbg(&client.conf, options->cli_log_fun,
				1480	options->cli_log_obj);
				1481	}
				1482	#endif
				1483
				1484	/* Server side */
				1485	if (options->dtls != 0) {
				1486	TEST_ASSERT(mbedtls_test_ssl_endpoint_init(&server,
				1487	MBEDTLS_SSL_IS_SERVER,
				1488	options->pk_alg,
				1489	&server_context,
				1490	&server_queue,
				1491	&client_queue, NULL) == 0);
				1492	#if defined(MBEDTLS_TIMING_C)
				1493	mbedtls_ssl_set_timer_cb(&server.ssl, &timer_server,
				1494	mbedtls_timing_set_delay,
				1495	mbedtls_timing_get_delay);
				1496	#endif
				1497	} else {
				1498	TEST_ASSERT(mbedtls_test_ssl_endpoint_init(&server,
				1499	MBEDTLS_SSL_IS_SERVER,
				1500	options->pk_alg, NULL, NULL,
				1501	NULL, NULL) == 0);
				1502	}
				1503
				1504	mbedtls_ssl_conf_authmode(&server.conf, options->srv_auth_mode);
				1505
				1506	if (options->server_min_version != TEST_SSL_MINOR_VERSION_NONE) {
				1507	mbedtls_ssl_conf_min_version(&server.conf, MBEDTLS_SSL_MAJOR_VERSION_3,
				1508	options->server_min_version);
				1509	}
				1510
				1511	if (options->server_max_version != TEST_SSL_MINOR_VERSION_NONE) {
				1512	mbedtls_ssl_conf_max_version(&server.conf, MBEDTLS_SSL_MAJOR_VERSION_3,
				1513	options->server_max_version);
				1514	}
				1515
				1516	#if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
				1517	TEST_ASSERT(mbedtls_ssl_conf_max_frag_len(&(server.conf),
				1518	(unsigned char) options->mfl)
				1519	== 0);
				1520	TEST_ASSERT(mbedtls_ssl_conf_max_frag_len(&(client.conf),
				1521	(unsigned char) options->mfl)
				1522	== 0);
				1523	#else
				1524	TEST_ASSERT(MBEDTLS_SSL_MAX_FRAG_LEN_NONE == options->mfl);
				1525	#endif /* MBEDTLS_SSL_MAX_FRAGMENT_LENGTH */
				1526
				1527	#if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
				1528	if (options->psk_str != NULL && options->psk_str->len > 0) {
				1529	TEST_ASSERT(mbedtls_ssl_conf_psk(
				1530	&client.conf, options->psk_str->x,
				1531	options->psk_str->len,
				1532	(const unsigned char *) psk_identity,
				1533	strlen(psk_identity)) == 0);
				1534
				1535	TEST_ASSERT(mbedtls_ssl_conf_psk(
				1536	&server.conf, options->psk_str->x,
				1537	options->psk_str->len,
				1538	(const unsigned char *) psk_identity,
				1539	strlen(psk_identity)) == 0);
				1540
				1541	mbedtls_ssl_conf_psk_cb(&server.conf, psk_dummy_callback, NULL);
				1542	}
				1543	#endif
				1544	#if defined(MBEDTLS_SSL_RENEGOTIATION)
				1545	if (options->renegotiate) {
				1546	mbedtls_ssl_conf_renegotiation(&(server.conf),
				1547	MBEDTLS_SSL_RENEGOTIATION_ENABLED);
				1548	mbedtls_ssl_conf_renegotiation(&(client.conf),
				1549	MBEDTLS_SSL_RENEGOTIATION_ENABLED);
				1550
				1551	mbedtls_ssl_conf_legacy_renegotiation(&(server.conf),
				1552	options->legacy_renegotiation);
				1553	mbedtls_ssl_conf_legacy_renegotiation(&(client.conf),
				1554	options->legacy_renegotiation);
				1555	}
				1556	#endif /* MBEDTLS_SSL_RENEGOTIATION */
				1557
				1558	#if defined(MBEDTLS_DEBUG_C)
				1559	if (options->srv_log_fun) {
				1560	mbedtls_debug_set_threshold(4);
				1561	mbedtls_ssl_conf_dbg(&server.conf, options->srv_log_fun,
				1562	options->srv_log_obj);
				1563	}
				1564	#endif
				1565
				1566	TEST_ASSERT(mbedtls_test_mock_socket_connect(&(client.socket),
				1567	&(server.socket),
				1568	BUFFSIZE) == 0);
				1569
				1570	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1571	if (options->resize_buffers != 0) {
				1572	/* Ensure that the buffer sizes are appropriate before resizes */
				1573	TEST_ASSERT(client.ssl.out_buf_len == MBEDTLS_SSL_OUT_BUFFER_LEN);
				1574	TEST_ASSERT(client.ssl.in_buf_len == MBEDTLS_SSL_IN_BUFFER_LEN);
				1575	TEST_ASSERT(server.ssl.out_buf_len == MBEDTLS_SSL_OUT_BUFFER_LEN);
				1576	TEST_ASSERT(server.ssl.in_buf_len == MBEDTLS_SSL_IN_BUFFER_LEN);
				1577	}
				1578	#endif
				1579
				1580	if (options->expected_negotiated_version == TEST_SSL_MINOR_VERSION_NONE) {
				1581	expected_handshake_result = MBEDTLS_ERR_SSL_BAD_HS_PROTOCOL_VERSION;
				1582	}
				1583
				1584	TEST_ASSERT(mbedtls_test_move_handshake_to_state(
				1585	&(client.ssl), &(server.ssl), MBEDTLS_SSL_HANDSHAKE_OVER)
				1586	== expected_handshake_result);
				1587
				1588	if (expected_handshake_result != 0) {
				1589	/* Connection will have failed by this point, skip to cleanup */
				1590	goto exit;
				1591	}
				1592
				1593	TEST_ASSERT(client.ssl.state == MBEDTLS_SSL_HANDSHAKE_OVER);
				1594	TEST_ASSERT(server.ssl.state == MBEDTLS_SSL_HANDSHAKE_OVER);
				1595
				1596	/* Check that we agree on the version... */
				1597	TEST_ASSERT(client.ssl.minor_ver == server.ssl.minor_ver);
				1598
				1599	/* And check that the version negotiated is the expected one. */
				1600	TEST_EQUAL(client.ssl.minor_ver, options->expected_negotiated_version);
				1601
				1602	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1603	if (options->resize_buffers != 0) {
				1604	if (options->expected_negotiated_version != MBEDTLS_SSL_MINOR_VERSION_0 &&
				1605	options->expected_negotiated_version != MBEDTLS_SSL_MINOR_VERSION_1) {
				1606	/* A server, when using DTLS, might delay a buffer resize to happen
				1607	* after it receives a message, so we force it. */
				1608	TEST_ASSERT(exchange_data(&(client.ssl), &(server.ssl)) == 0);
				1609
				1610	TEST_ASSERT(client.ssl.out_buf_len ==
				1611	mbedtls_ssl_get_output_buflen(&client.ssl));
				1612	TEST_ASSERT(client.ssl.in_buf_len ==
				1613	mbedtls_ssl_get_input_buflen(&client.ssl));
				1614	TEST_ASSERT(server.ssl.out_buf_len ==
				1615	mbedtls_ssl_get_output_buflen(&server.ssl));
				1616	TEST_ASSERT(server.ssl.in_buf_len ==
				1617	mbedtls_ssl_get_input_buflen(&server.ssl));
				1618	}
				1619	}
				1620	#endif
				1621
				1622	if (options->cli_msg_len != 0 \|\| options->srv_msg_len != 0) {
				1623	/* Start data exchanging test */
				1624	TEST_ASSERT(mbedtls_exchange_data(&(client.ssl), options->cli_msg_len,
				1625	options->expected_cli_fragments,
				1626	&(server.ssl), options->srv_msg_len,
				1627	options->expected_srv_fragments)
				1628	== 0);
				1629	}
				1630	#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
				1631	if (options->serialize == 1) {
				1632	TEST_ASSERT(options->dtls == 1);
				1633
				1634	TEST_ASSERT(mbedtls_ssl_context_save(&(server.ssl), NULL,
				1635	0, &context_buf_len)
				1636	== MBEDTLS_ERR_SSL_BUFFER_TOO_SMALL);
				1637
				1638	context_buf = mbedtls_calloc(1, context_buf_len);
				1639	TEST_ASSERT(context_buf != NULL);
				1640
				1641	TEST_ASSERT(mbedtls_ssl_context_save(&(server.ssl), context_buf,
				1642	context_buf_len,
				1643	&context_buf_len)
				1644	== 0);
				1645
				1646	mbedtls_ssl_free(&(server.ssl));
				1647	mbedtls_ssl_init(&(server.ssl));
				1648
				1649	TEST_ASSERT(mbedtls_ssl_setup(&(server.ssl), &(server.conf)) == 0);
				1650
				1651	mbedtls_ssl_set_bio(&(server.ssl), &server_context,
				1652	mbedtls_test_mock_tcp_send_msg,
				1653	mbedtls_test_mock_tcp_recv_msg,
				1654	NULL);
				1655
				1656	#if defined(MBEDTLS_TIMING_C)
				1657	mbedtls_ssl_set_timer_cb(&server.ssl, &timer_server,
				1658	mbedtls_timing_set_delay,
				1659	mbedtls_timing_get_delay);
				1660	#endif
				1661	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1662	if (options->resize_buffers != 0) {
				1663	/* Ensure that the buffer sizes are appropriate before resizes */
				1664	TEST_ASSERT(server.ssl.out_buf_len == MBEDTLS_SSL_OUT_BUFFER_LEN);
				1665	TEST_ASSERT(server.ssl.in_buf_len == MBEDTLS_SSL_IN_BUFFER_LEN);
				1666	}
				1667	#endif
				1668	TEST_ASSERT(mbedtls_ssl_context_load(&(server.ssl), context_buf,
				1669	context_buf_len) == 0);
				1670
				1671	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1672	/* Validate buffer sizes after context deserialization */
				1673	if (options->resize_buffers != 0) {
				1674	TEST_ASSERT(server.ssl.out_buf_len ==
				1675	mbedtls_ssl_get_output_buflen(&server.ssl));
				1676	TEST_ASSERT(server.ssl.in_buf_len ==
				1677	mbedtls_ssl_get_input_buflen(&server.ssl));
				1678	}
				1679	#endif
				1680	/* Retest writing/reading */
				1681	if (options->cli_msg_len != 0 \|\| options->srv_msg_len != 0) {
				1682	TEST_ASSERT(mbedtls_exchange_data(
				1683	&(client.ssl),
				1684	options->cli_msg_len,
				1685	options->expected_cli_fragments,
				1686	&(server.ssl),
				1687	options->srv_msg_len,
				1688	options->expected_srv_fragments)
				1689	== 0);
				1690	}
				1691	}
				1692	#endif /* MBEDTLS_SSL_CONTEXT_SERIALIZATION */
				1693
				1694	#if defined(MBEDTLS_SSL_RENEGOTIATION)
				1695	if (options->renegotiate) {
				1696	/* Start test with renegotiation */
				1697	TEST_ASSERT(server.ssl.renego_status ==
				1698	MBEDTLS_SSL_INITIAL_HANDSHAKE);
				1699	TEST_ASSERT(client.ssl.renego_status ==
				1700	MBEDTLS_SSL_INITIAL_HANDSHAKE);
				1701
				1702	/* After calling this function for the server, it only sends a handshake
				1703	* request. All renegotiation should happen during data exchanging */
				1704	TEST_ASSERT(mbedtls_ssl_renegotiate(&(server.ssl)) == 0);
				1705	TEST_ASSERT(server.ssl.renego_status ==
				1706	MBEDTLS_SSL_RENEGOTIATION_PENDING);
				1707	TEST_ASSERT(client.ssl.renego_status ==
				1708	MBEDTLS_SSL_INITIAL_HANDSHAKE);
				1709
				1710	TEST_ASSERT(exchange_data(&(client.ssl), &(server.ssl)) == 0);
				1711	TEST_ASSERT(server.ssl.renego_status ==
				1712	MBEDTLS_SSL_RENEGOTIATION_DONE);
				1713	TEST_ASSERT(client.ssl.renego_status ==
				1714	MBEDTLS_SSL_RENEGOTIATION_DONE);
				1715
				1716	/* After calling mbedtls_ssl_renegotiate for the client,
				1717	* all renegotiation should happen inside this function.
				1718	* However in this test, we cannot perform simultaneous communication
				1719	* between client and server so this function will return waiting error
				1720	* on the socket. All rest of renegotiation should happen
				1721	* during data exchanging */
				1722	ret = mbedtls_ssl_renegotiate(&(client.ssl));
				1723	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1724	if (options->resize_buffers != 0) {
				1725	/* Ensure that the buffer sizes are appropriate before resizes */
				1726	TEST_ASSERT(client.ssl.out_buf_len == MBEDTLS_SSL_OUT_BUFFER_LEN);
				1727	TEST_ASSERT(client.ssl.in_buf_len == MBEDTLS_SSL_IN_BUFFER_LEN);
				1728	}
				1729	#endif
				1730	TEST_ASSERT(ret == 0 \|\|
				1731	ret == MBEDTLS_ERR_SSL_WANT_READ \|\|
				1732	ret == MBEDTLS_ERR_SSL_WANT_WRITE);
				1733	TEST_ASSERT(server.ssl.renego_status ==
				1734	MBEDTLS_SSL_RENEGOTIATION_DONE);
				1735	TEST_ASSERT(client.ssl.renego_status ==
				1736	MBEDTLS_SSL_RENEGOTIATION_IN_PROGRESS);
				1737
				1738	TEST_ASSERT(exchange_data(&(client.ssl), &(server.ssl)) == 0);
				1739	TEST_ASSERT(server.ssl.renego_status ==
				1740	MBEDTLS_SSL_RENEGOTIATION_DONE);
				1741	TEST_ASSERT(client.ssl.renego_status ==
				1742	MBEDTLS_SSL_RENEGOTIATION_DONE);
				1743	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1744	/* Validate buffer sizes after renegotiation */
				1745	if (options->resize_buffers != 0) {
				1746	TEST_ASSERT(client.ssl.out_buf_len ==
				1747	mbedtls_ssl_get_output_buflen(&client.ssl));
				1748	TEST_ASSERT(client.ssl.in_buf_len ==
				1749	mbedtls_ssl_get_input_buflen(&client.ssl));
				1750	TEST_ASSERT(server.ssl.out_buf_len ==
				1751	mbedtls_ssl_get_output_buflen(&server.ssl));
				1752	TEST_ASSERT(server.ssl.in_buf_len ==
				1753	mbedtls_ssl_get_input_buflen(&server.ssl));
				1754	}
				1755	#endif /* MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH */
				1756	}
				1757	#endif /* MBEDTLS_SSL_RENEGOTIATION */
				1758
				1759	exit:
				1760	mbedtls_test_ssl_endpoint_free(&client,
				1761	options->dtls != 0 ? &client_context : NULL);
				1762	mbedtls_test_ssl_endpoint_free(&server,
				1763	options->dtls != 0 ? &server_context : NULL);
				1764	#if defined(MBEDTLS_DEBUG_C)
				1765	if (options->cli_log_fun \|\| options->srv_log_fun) {
				1766	mbedtls_debug_set_threshold(0);
				1767	}
				1768	#endif
				1769	#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
				1770	if (context_buf != NULL) {
				1771	mbedtls_free(context_buf);
				1772	}
				1773	#endif
				1774	}
Yanray Wang	1ef77c0	2023-03-14 16:59:00 +0800	[diff] [blame]	1775	#endif /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C &&
				1776	MBEDTLS_ENTROPY_C && MBEDTLS_CTR_DRBG_C */
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1777
Yanray Wang	4323e45	2023-03-14 16:52:06 +0800	[diff] [blame]	1778	#endif /* MBEDTLS_SSL_TLS_C */