Blame - tests/src/test_helpers/ssl_helpers.c - mirror/mbed-tls

blob: b7a7e86eec673a7c04772c02c3dbc90ab275ef92 [file] [log] [blame]

Yanray Wang	5fce145	2022-10-24 14:42:01 +0800	[diff] [blame]	1	/** \file ssl_helpers.c
				2	*
				3	* \brief Helper functions to set up a TLS connection.
				4	*/
				5
				6	/*
				7	* Copyright The Mbed TLS Contributors
				8	* SPDX-License-Identifier: Apache-2.0
				9	*
				10	* Licensed under the Apache License, Version 2.0 (the "License"); you may
				11	* not use this file except in compliance with the License.
				12	* You may obtain a copy of the License at
				13	*
				14	* http://www.apache.org/licenses/LICENSE-2.0
				15	*
				16	* Unless required by applicable law or agreed to in writing, software
				17	* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
				18	* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
				19	* See the License for the specific language governing permissions and
				20	* limitations under the License.
				21	*/
				22
				23	#include <test/ssl_helpers.h>
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	24
Yanray Wang	4323e45	2023-03-14 16:52:06 +0800	[diff] [blame]	25	#if defined(MBEDTLS_SSL_TLS_C)
				26
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	27	void mbedtls_test_ssl_log_analyzer(void *ctx, int level,
				28	const char *file, int line,
				29	const char *str)
				30	{
				31	mbedtls_test_ssl_log_pattern p = (mbedtls_test_ssl_log_pattern ) ctx;
				32
				33	(void) level;
				34	(void) line;
				35	(void) file;
				36
				37	if (NULL != p &&
				38	NULL != p->pattern &&
				39	NULL != strstr(str, p->pattern)) {
				40	p->counter++;
				41	}
				42	}
				43
				44	void mbedtls_test_init_handshake_options(
				45	mbedtls_test_handshake_test_options *opts)
				46	{
				47	opts->cipher = "";
				48	opts->client_min_version = TEST_SSL_MINOR_VERSION_NONE;
				49	opts->client_max_version = TEST_SSL_MINOR_VERSION_NONE;
				50	opts->server_min_version = TEST_SSL_MINOR_VERSION_NONE;
				51	opts->server_max_version = TEST_SSL_MINOR_VERSION_NONE;
				52	opts->expected_negotiated_version = MBEDTLS_SSL_MINOR_VERSION_3;
				53	opts->pk_alg = MBEDTLS_PK_RSA;
				54	opts->psk_str = NULL;
				55	opts->dtls = 0;
				56	opts->srv_auth_mode = MBEDTLS_SSL_VERIFY_NONE;
				57	opts->serialize = 0;
				58	opts->mfl = MBEDTLS_SSL_MAX_FRAG_LEN_NONE;
				59	opts->cli_msg_len = 100;
				60	opts->srv_msg_len = 100;
				61	opts->expected_cli_fragments = 1;
				62	opts->expected_srv_fragments = 1;
				63	opts->renegotiate = 0;
				64	opts->legacy_renegotiation = MBEDTLS_SSL_LEGACY_NO_RENEGOTIATION;
				65	opts->srv_log_obj = NULL;
				66	opts->srv_log_obj = NULL;
				67	opts->srv_log_fun = NULL;
				68	opts->cli_log_fun = NULL;
				69	opts->resize_buffers = 1;
				70	}
				71
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	72	void mbedtls_test_ssl_buffer_init(mbedtls_test_ssl_buffer *buf)
				73	{
				74	memset(buf, 0, sizeof(*buf));
				75	}
				76
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	77	int mbedtls_test_ssl_buffer_setup(mbedtls_test_ssl_buffer *buf,
				78	size_t capacity)
				79	{
				80	buf->buffer = (unsigned char *) mbedtls_calloc(capacity,
				81	sizeof(unsigned char));
				82	if (NULL == buf->buffer) {
				83	return MBEDTLS_ERR_SSL_ALLOC_FAILED;
				84	}
				85	buf->capacity = capacity;
				86
				87	return 0;
				88	}
				89
				90	void mbedtls_test_ssl_buffer_free(mbedtls_test_ssl_buffer *buf)
				91	{
				92	if (buf->buffer != NULL) {
				93	mbedtls_free(buf->buffer);
				94	}
				95
				96	memset(buf, 0, sizeof(*buf));
				97	}
				98
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	99	int mbedtls_test_ssl_buffer_put(mbedtls_test_ssl_buffer *buf,
				100	const unsigned char *input, size_t input_len)
				101	{
				102	size_t overflow = 0;
				103
				104	if ((buf == NULL) \|\| (buf->buffer == NULL)) {
				105	return -1;
				106	}
				107
				108	/* Reduce input_len to a number that fits in the buffer. */
				109	if ((buf->content_length + input_len) > buf->capacity) {
				110	input_len = buf->capacity - buf->content_length;
				111	}
				112
				113	if (input == NULL) {
				114	return (input_len == 0) ? 0 : -1;
				115	}
				116
				117	/* Check if the buffer has not come full circle and free space is not in
				118	* the middle */
				119	if (buf->start + buf->content_length < buf->capacity) {
				120
				121	/* Calculate the number of bytes that need to be placed at lower memory
				122	* address */
				123	if (buf->start + buf->content_length + input_len
				124	> buf->capacity) {
				125	overflow = (buf->start + buf->content_length + input_len)
				126	% buf->capacity;
				127	}
				128
				129	memcpy(buf->buffer + buf->start + buf->content_length, input,
				130	input_len - overflow);
				131	memcpy(buf->buffer, input + input_len - overflow, overflow);
				132
				133	} else {
				134	/* The buffer has come full circle and free space is in the middle */
				135	memcpy(buf->buffer + buf->start + buf->content_length - buf->capacity,
				136	input, input_len);
				137	}
				138
				139	buf->content_length += input_len;
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	140	return (input_len > INT_MAX) ? INT_MAX : (int) input_len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	141	}
				142
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	143	int mbedtls_test_ssl_buffer_get(mbedtls_test_ssl_buffer *buf,
				144	unsigned char *output, size_t output_len)
				145	{
				146	size_t overflow = 0;
				147
				148	if ((buf == NULL) \|\| (buf->buffer == NULL)) {
				149	return -1;
				150	}
				151
				152	if (output == NULL && output_len == 0) {
				153	return 0;
				154	}
				155
				156	if (buf->content_length < output_len) {
				157	output_len = buf->content_length;
				158	}
				159
				160	/* Calculate the number of bytes that need to be drawn from lower memory
				161	* address */
				162	if (buf->start + output_len > buf->capacity) {
				163	overflow = (buf->start + output_len) % buf->capacity;
				164	}
				165
				166	if (output != NULL) {
				167	memcpy(output, buf->buffer + buf->start, output_len - overflow);
				168	memcpy(output + output_len - overflow, buf->buffer, overflow);
				169	}
				170
				171	buf->content_length -= output_len;
				172	buf->start = (buf->start + output_len) % buf->capacity;
				173
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	174	return (output_len > INT_MAX) ? INT_MAX : (int) output_len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	175	}
				176
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	177	int mbedtls_test_ssl_message_queue_setup(
				178	mbedtls_test_ssl_message_queue *queue, size_t capacity)
				179	{
				180	queue->messages = (size_t *) mbedtls_calloc(capacity, sizeof(size_t));
				181	if (NULL == queue->messages) {
				182	return MBEDTLS_ERR_SSL_ALLOC_FAILED;
				183	}
				184
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	185	queue->capacity = (capacity > INT_MAX) ? INT_MAX : (int) capacity;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	186	queue->pos = 0;
				187	queue->num = 0;
				188
				189	return 0;
				190	}
				191
				192	void mbedtls_test_ssl_message_queue_free(
				193	mbedtls_test_ssl_message_queue *queue)
				194	{
				195	if (queue == NULL) {
				196	return;
				197	}
				198
				199	if (queue->messages != NULL) {
				200	mbedtls_free(queue->messages);
				201	}
				202
				203	memset(queue, 0, sizeof(*queue));
				204	}
				205
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	206	int mbedtls_test_ssl_message_queue_push_info(
				207	mbedtls_test_ssl_message_queue *queue, size_t len)
				208	{
				209	int place;
				210	if (queue == NULL) {
				211	return MBEDTLS_TEST_ERROR_ARG_NULL;
				212	}
				213
				214	if (queue->num >= queue->capacity) {
				215	return MBEDTLS_ERR_SSL_WANT_WRITE;
				216	}
				217
				218	place = (queue->pos + queue->num) % queue->capacity;
				219	queue->messages[place] = len;
				220	queue->num++;
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	221	return (len > INT_MAX) ? INT_MAX : (int) len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	222	}
				223
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	224	int mbedtls_test_ssl_message_queue_pop_info(
				225	mbedtls_test_ssl_message_queue *queue, size_t buf_len)
				226	{
				227	size_t message_length;
				228	if (queue == NULL) {
				229	return MBEDTLS_TEST_ERROR_ARG_NULL;
				230	}
				231	if (queue->num == 0) {
				232	return MBEDTLS_ERR_SSL_WANT_READ;
				233	}
				234
				235	message_length = queue->messages[queue->pos];
				236	queue->messages[queue->pos] = 0;
				237	queue->num--;
				238	queue->pos++;
				239	queue->pos %= queue->capacity;
				240	if (queue->pos < 0) {
				241	queue->pos += queue->capacity;
				242	}
				243
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	244	return (message_length > INT_MAX && buf_len > INT_MAX) ? INT_MAX :
				245	(message_length > buf_len) ? (int) buf_len : (int) message_length;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	246	}
				247
				248	/*
				249	* Take a peek on the info about the next message length from the queue.
				250	* This will be the oldest inserted message length(fifo).
				251	*
				252	* \retval MBEDTLS_TEST_ERROR_ARG_NULL, if the queue is null.
				253	* \retval MBEDTLS_ERR_SSL_WANT_READ, if the queue is empty.
				254	* \retval 0, if the peek was successful.
				255	* \retval MBEDTLS_TEST_ERROR_MESSAGE_TRUNCATED, if the given buffer length is
				256	* too small to fit the message. In this case the \p msg_len will be
				257	* set to the full message length so that the
				258	* caller knows what portion of the message can be dropped.
				259	*/
				260	int mbedtls_test_message_queue_peek_info(mbedtls_test_ssl_message_queue *queue,
				261	size_t buf_len, size_t *msg_len)
				262	{
				263	if (queue == NULL \|\| msg_len == NULL) {
				264	return MBEDTLS_TEST_ERROR_ARG_NULL;
				265	}
				266	if (queue->num == 0) {
				267	return MBEDTLS_ERR_SSL_WANT_READ;
				268	}
				269
				270	*msg_len = queue->messages[queue->pos];
				271	return (*msg_len > buf_len) ? MBEDTLS_TEST_ERROR_MESSAGE_TRUNCATED : 0;
				272	}
				273
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	274	void mbedtls_mock_socket_init(mbedtls_test_mock_socket *socket)
				275	{
				276	memset(socket, 0, sizeof(*socket));
				277	}
				278
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	279	void mbedtls_test_mock_socket_close(mbedtls_test_mock_socket *socket)
				280	{
				281	if (socket == NULL) {
				282	return;
				283	}
				284
				285	if (socket->input != NULL) {
				286	mbedtls_test_ssl_buffer_free(socket->input);
				287	mbedtls_free(socket->input);
				288	}
				289
				290	if (socket->output != NULL) {
				291	mbedtls_test_ssl_buffer_free(socket->output);
				292	mbedtls_free(socket->output);
				293	}
				294
				295	if (socket->peer != NULL) {
				296	memset(socket->peer, 0, sizeof(*socket->peer));
				297	}
				298
				299	memset(socket, 0, sizeof(*socket));
				300	}
				301
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	302	int mbedtls_test_mock_socket_connect(mbedtls_test_mock_socket *peer1,
				303	mbedtls_test_mock_socket *peer2,
				304	size_t bufsize)
				305	{
				306	int ret = -1;
				307
				308	peer1->output =
				309	(mbedtls_test_ssl_buffer *) mbedtls_calloc(
				310	1, sizeof(mbedtls_test_ssl_buffer));
				311	if (peer1->output == NULL) {
				312	ret = MBEDTLS_ERR_SSL_ALLOC_FAILED;
				313	goto exit;
				314	}
				315	mbedtls_test_ssl_buffer_init(peer1->output);
				316	if (0 != (ret = mbedtls_test_ssl_buffer_setup(peer1->output, bufsize))) {
				317	goto exit;
				318	}
				319
				320	peer2->output =
				321	(mbedtls_test_ssl_buffer *) mbedtls_calloc(
				322	1, sizeof(mbedtls_test_ssl_buffer));
				323	if (peer2->output == NULL) {
				324	ret = MBEDTLS_ERR_SSL_ALLOC_FAILED;
				325	goto exit;
				326	}
				327	mbedtls_test_ssl_buffer_init(peer2->output);
				328	if (0 != (ret = mbedtls_test_ssl_buffer_setup(peer2->output, bufsize))) {
				329	goto exit;
				330	}
				331
				332	peer1->peer = peer2;
				333	peer2->peer = peer1;
				334	peer1->input = peer2->output;
				335	peer2->input = peer1->output;
				336
				337	peer1->status = peer2->status = MBEDTLS_MOCK_SOCKET_CONNECTED;
				338	ret = 0;
				339
				340	exit:
				341
				342	if (ret != 0) {
				343	mbedtls_test_mock_socket_close(peer1);
				344	mbedtls_test_mock_socket_close(peer2);
				345	}
				346
				347	return ret;
				348	}
				349
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	350	int mbedtls_test_mock_tcp_send_b(void *ctx,
				351	const unsigned char *buf, size_t len)
				352	{
				353	mbedtls_test_mock_socket socket = (mbedtls_test_mock_socket ) ctx;
				354
				355	if (socket == NULL \|\| socket->status != MBEDTLS_MOCK_SOCKET_CONNECTED) {
				356	return -1;
				357	}
				358
				359	return mbedtls_test_ssl_buffer_put(socket->output, buf, len);
				360	}
				361
				362	int mbedtls_test_mock_tcp_recv_b(void ctx, unsigned char buf, size_t len)
				363	{
				364	mbedtls_test_mock_socket socket = (mbedtls_test_mock_socket ) ctx;
				365
				366	if (socket == NULL \|\| socket->status != MBEDTLS_MOCK_SOCKET_CONNECTED) {
				367	return -1;
				368	}
				369
				370	return mbedtls_test_ssl_buffer_get(socket->input, buf, len);
				371	}
				372
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	373	int mbedtls_test_mock_tcp_send_nb(void *ctx,
				374	const unsigned char *buf, size_t len)
				375	{
				376	mbedtls_test_mock_socket socket = (mbedtls_test_mock_socket ) ctx;
				377
				378	if (socket == NULL \|\| socket->status != MBEDTLS_MOCK_SOCKET_CONNECTED) {
				379	return -1;
				380	}
				381
				382	if (socket->output->capacity == socket->output->content_length) {
				383	return MBEDTLS_ERR_SSL_WANT_WRITE;
				384	}
				385
				386	return mbedtls_test_ssl_buffer_put(socket->output, buf, len);
				387	}
				388
				389	int mbedtls_test_mock_tcp_recv_nb(void ctx, unsigned char buf, size_t len)
				390	{
				391	mbedtls_test_mock_socket socket = (mbedtls_test_mock_socket ) ctx;
				392
				393	if (socket == NULL \|\| socket->status != MBEDTLS_MOCK_SOCKET_CONNECTED) {
				394	return -1;
				395	}
				396
				397	if (socket->input->content_length == 0) {
				398	return MBEDTLS_ERR_SSL_WANT_READ;
				399	}
				400
				401	return mbedtls_test_ssl_buffer_get(socket->input, buf, len);
				402	}
				403
				404	void mbedtls_test_message_socket_init(
				405	mbedtls_test_message_socket_context *ctx)
				406	{
				407	ctx->queue_input = NULL;
				408	ctx->queue_output = NULL;
				409	ctx->socket = NULL;
				410	}
				411
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	412	int mbedtls_test_message_socket_setup(
				413	mbedtls_test_ssl_message_queue *queue_input,
				414	mbedtls_test_ssl_message_queue *queue_output,
				415	size_t queue_capacity,
				416	mbedtls_test_mock_socket *socket,
				417	mbedtls_test_message_socket_context *ctx)
				418	{
				419	int ret = mbedtls_test_ssl_message_queue_setup(queue_input, queue_capacity);
				420	if (ret != 0) {
				421	return ret;
				422	}
				423	ctx->queue_input = queue_input;
				424	ctx->queue_output = queue_output;
				425	ctx->socket = socket;
				426	mbedtls_mock_socket_init(socket);
				427
				428	return 0;
				429	}
				430
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	431	void mbedtls_test_message_socket_close(
				432	mbedtls_test_message_socket_context *ctx)
				433	{
				434	if (ctx == NULL) {
				435	return;
				436	}
				437
				438	mbedtls_test_ssl_message_queue_free(ctx->queue_input);
				439	mbedtls_test_mock_socket_close(ctx->socket);
				440	memset(ctx, 0, sizeof(*ctx));
				441	}
				442
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	443	int mbedtls_test_mock_tcp_send_msg(void *ctx,
				444	const unsigned char *buf, size_t len)
				445	{
				446	mbedtls_test_ssl_message_queue *queue;
				447	mbedtls_test_mock_socket *socket;
				448	mbedtls_test_message_socket_context *context =
				449	(mbedtls_test_message_socket_context *) ctx;
				450
				451	if (context == NULL \|\| context->socket == NULL
				452	\|\| context->queue_output == NULL) {
				453	return MBEDTLS_TEST_ERROR_CONTEXT_ERROR;
				454	}
				455
				456	queue = context->queue_output;
				457	socket = context->socket;
				458
				459	if (queue->num >= queue->capacity) {
				460	return MBEDTLS_ERR_SSL_WANT_WRITE;
				461	}
				462
				463	if (mbedtls_test_mock_tcp_send_b(socket, buf, len) != (int) len) {
				464	return MBEDTLS_TEST_ERROR_SEND_FAILED;
				465	}
				466
				467	return mbedtls_test_ssl_message_queue_push_info(queue, len);
				468	}
				469
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	470	int mbedtls_test_mock_tcp_recv_msg(void *ctx,
				471	unsigned char *buf, size_t buf_len)
				472	{
				473	mbedtls_test_ssl_message_queue *queue;
				474	mbedtls_test_mock_socket *socket;
				475	mbedtls_test_message_socket_context *context =
				476	(mbedtls_test_message_socket_context *) ctx;
				477	size_t drop_len = 0;
				478	size_t msg_len;
				479	int ret;
				480
				481	if (context == NULL \|\| context->socket == NULL
				482	\|\| context->queue_input == NULL) {
				483	return MBEDTLS_TEST_ERROR_CONTEXT_ERROR;
				484	}
				485
				486	queue = context->queue_input;
				487	socket = context->socket;
				488
				489	/* Peek first, so that in case of a socket error the data remains in
				490	* the queue. */
				491	ret = mbedtls_test_message_queue_peek_info(queue, buf_len, &msg_len);
				492	if (ret == MBEDTLS_TEST_ERROR_MESSAGE_TRUNCATED) {
				493	/* Calculate how much to drop */
				494	drop_len = msg_len - buf_len;
				495
				496	/* Set the requested message len to be buffer length */
				497	msg_len = buf_len;
				498	} else if (ret != 0) {
				499	return ret;
				500	}
				501
				502	if (mbedtls_test_mock_tcp_recv_b(socket, buf, msg_len) != (int) msg_len) {
				503	return MBEDTLS_TEST_ERROR_RECV_FAILED;
				504	}
				505
				506	if (ret == MBEDTLS_TEST_ERROR_MESSAGE_TRUNCATED) {
				507	/* Drop the remaining part of the message */
				508	if (mbedtls_test_mock_tcp_recv_b(socket, NULL, drop_len) !=
				509	(int) drop_len) {
				510	/* Inconsistent state - part of the message was read,
				511	* and a part couldn't. Not much we can do here, but it should not
				512	* happen in test environment, unless forced manually. */
				513	}
				514	}
				515	mbedtls_test_ssl_message_queue_pop_info(queue, buf_len);
				516
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	517	return (msg_len > INT_MAX) ? INT_MAX : (int) msg_len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	518	}
				519
				520	#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
				521	defined(MBEDTLS_CERTS_C) && \
				522	defined(MBEDTLS_ENTROPY_C) && \
				523	defined(MBEDTLS_CTR_DRBG_C)
				524
				525	/*
				526	* Deinitializes certificates from endpoint represented by \p ep.
				527	*/
				528	void mbedtls_endpoint_certificate_free(mbedtls_test_ssl_endpoint *ep)
				529	{
				530	mbedtls_test_ssl_endpoint_certificate *cert = &(ep->cert);
				531	if (cert != NULL) {
				532	if (cert->ca_cert != NULL) {
				533	mbedtls_x509_crt_free(cert->ca_cert);
				534	mbedtls_free(cert->ca_cert);
				535	cert->ca_cert = NULL;
				536	}
				537	if (cert->cert != NULL) {
				538	mbedtls_x509_crt_free(cert->cert);
				539	mbedtls_free(cert->cert);
				540	cert->cert = NULL;
				541	}
				542	if (cert->pkey != NULL) {
				543	#if defined(MBEDTLS_USE_PSA_CRYPTO)
				544	if (mbedtls_pk_get_type(cert->pkey) == MBEDTLS_PK_OPAQUE) {
				545	mbedtls_svc_key_id_t *key_slot = cert->pkey->pk_ctx;
				546	psa_destroy_key(*key_slot);
				547	}
				548	#endif
				549	mbedtls_pk_free(cert->pkey);
				550	mbedtls_free(cert->pkey);
				551	cert->pkey = NULL;
				552	}
				553	}
				554	}
				555
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	556	int mbedtls_test_ssl_endpoint_certificate_init(mbedtls_test_ssl_endpoint *ep,
				557	int pk_alg)
				558	{
				559	int i = 0;
				560	int ret = -1;
				561	mbedtls_test_ssl_endpoint_certificate *cert = NULL;
				562
				563	if (ep == NULL) {
				564	return MBEDTLS_ERR_SSL_BAD_INPUT_DATA;
				565	}
				566
				567	cert = &(ep->cert);
				568	ASSERT_ALLOC(cert->ca_cert, 1);
				569	ASSERT_ALLOC(cert->cert, 1);
				570	ASSERT_ALLOC(cert->pkey, 1);
				571
				572	mbedtls_x509_crt_init(cert->ca_cert);
				573	mbedtls_x509_crt_init(cert->cert);
				574	mbedtls_pk_init(cert->pkey);
				575
				576	/* Load the trusted CA */
				577
				578	for (i = 0; mbedtls_test_cas_der[i] != NULL; i++) {
				579	ret = mbedtls_x509_crt_parse_der(
				580	cert->ca_cert,
				581	(const unsigned char *) mbedtls_test_cas_der[i],
				582	mbedtls_test_cas_der_len[i]);
				583	TEST_ASSERT(ret == 0);
				584	}
				585
				586	/* Load own certificate and private key */
				587
				588	if (ep->conf.endpoint == MBEDTLS_SSL_IS_SERVER) {
				589	if (pk_alg == MBEDTLS_PK_RSA) {
				590	ret = mbedtls_x509_crt_parse(
				591	cert->cert,
				592	(const unsigned char *) mbedtls_test_srv_crt_rsa_sha256_der,
				593	mbedtls_test_srv_crt_rsa_sha256_der_len);
				594	TEST_ASSERT(ret == 0);
				595
				596	ret = mbedtls_pk_parse_key(
				597	cert->pkey,
				598	(const unsigned char *) mbedtls_test_srv_key_rsa_der,
				599	mbedtls_test_srv_key_rsa_der_len, NULL, 0);
				600	TEST_ASSERT(ret == 0);
				601	} else {
				602	ret = mbedtls_x509_crt_parse(
				603	cert->cert,
				604	(const unsigned char *) mbedtls_test_srv_crt_ec_der,
				605	mbedtls_test_srv_crt_ec_der_len);
				606	TEST_ASSERT(ret == 0);
				607
				608	ret = mbedtls_pk_parse_key(
				609	cert->pkey,
				610	(const unsigned char *) mbedtls_test_srv_key_ec_der,
				611	mbedtls_test_srv_key_ec_der_len, NULL, 0);
				612	TEST_ASSERT(ret == 0);
				613	}
				614	} else {
				615	if (pk_alg == MBEDTLS_PK_RSA) {
				616	ret = mbedtls_x509_crt_parse(
				617	cert->cert,
				618	(const unsigned char *) mbedtls_test_cli_crt_rsa_der,
				619	mbedtls_test_cli_crt_rsa_der_len);
				620	TEST_ASSERT(ret == 0);
				621
				622	ret = mbedtls_pk_parse_key(
				623	cert->pkey,
				624	(const unsigned char *) mbedtls_test_cli_key_rsa_der,
				625	mbedtls_test_cli_key_rsa_der_len, NULL, 0);
				626	TEST_ASSERT(ret == 0);
				627	} else {
				628	ret = mbedtls_x509_crt_parse(
				629	cert->cert,
				630	(const unsigned char *) mbedtls_test_cli_crt_ec_der,
				631	mbedtls_test_cli_crt_ec_len);
				632	TEST_ASSERT(ret == 0);
				633
				634	ret = mbedtls_pk_parse_key(
				635	cert->pkey,
				636	(const unsigned char *) mbedtls_test_cli_key_ec_der,
				637	mbedtls_test_cli_key_ec_der_len, NULL, 0);
				638	TEST_ASSERT(ret == 0);
				639	}
				640	}
				641
				642	mbedtls_ssl_conf_ca_chain(&(ep->conf), cert->ca_cert, NULL);
				643
				644	ret = mbedtls_ssl_conf_own_cert(&(ep->conf), cert->cert,
				645	cert->pkey);
				646	TEST_ASSERT(ret == 0);
				647
				648	exit:
				649	if (ret != 0) {
				650	mbedtls_endpoint_certificate_free(ep);
				651	}
				652
				653	return ret;
				654	}
				655
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	656	int mbedtls_test_ssl_endpoint_init(
				657	mbedtls_test_ssl_endpoint *ep, int endpoint_type, int pk_alg,
				658	mbedtls_test_message_socket_context *dtls_context,
				659	mbedtls_test_ssl_message_queue *input_queue,
				660	mbedtls_test_ssl_message_queue *output_queue,
				661	const mbedtls_ecp_group_id *curves)
				662	{
				663	int ret = -1;
				664
				665	if (dtls_context != NULL &&
				666	(input_queue == NULL \|\| output_queue == NULL)) {
				667	return MBEDTLS_ERR_SSL_BAD_INPUT_DATA;
				668	}
				669
				670	if (ep == NULL) {
				671	return MBEDTLS_ERR_SSL_BAD_INPUT_DATA;
				672	}
				673
				674	memset(ep, 0, sizeof(*ep));
				675
				676	ep->name = (endpoint_type == MBEDTLS_SSL_IS_SERVER) ? "Server" : "Client";
				677
				678	mbedtls_ssl_init(&(ep->ssl));
				679	mbedtls_ssl_config_init(&(ep->conf));
				680	mbedtls_ctr_drbg_init(&(ep->ctr_drbg));
				681	mbedtls_ssl_conf_rng(&(ep->conf),
				682	mbedtls_ctr_drbg_random,
				683	&(ep->ctr_drbg));
				684	mbedtls_entropy_init(&(ep->entropy));
				685	if (dtls_context != NULL) {
				686	TEST_ASSERT(mbedtls_test_message_socket_setup(input_queue, output_queue,
				687	100, &(ep->socket),
				688	dtls_context) == 0);
				689	} else {
				690	mbedtls_mock_socket_init(&(ep->socket));
				691	}
				692
				693	ret = mbedtls_ctr_drbg_seed(&(ep->ctr_drbg), mbedtls_entropy_func,
				694	&(ep->entropy),
				695	(const unsigned char *) (ep->name),
				696	strlen(ep->name));
				697	TEST_ASSERT(ret == 0);
				698
				699	/* Non-blocking callbacks without timeout */
				700	if (dtls_context != NULL) {
				701	mbedtls_ssl_set_bio(&(ep->ssl), dtls_context,
				702	mbedtls_test_mock_tcp_send_msg,
				703	mbedtls_test_mock_tcp_recv_msg,
				704	NULL);
				705	} else {
				706	mbedtls_ssl_set_bio(&(ep->ssl), &(ep->socket),
				707	mbedtls_test_mock_tcp_send_nb,
				708	mbedtls_test_mock_tcp_recv_nb,
				709	NULL);
				710	}
				711
				712	ret = mbedtls_ssl_config_defaults(&(ep->conf), endpoint_type,
				713	(dtls_context != NULL) ?
				714	MBEDTLS_SSL_TRANSPORT_DATAGRAM :
				715	MBEDTLS_SSL_TRANSPORT_STREAM,
				716	MBEDTLS_SSL_PRESET_DEFAULT);
				717	TEST_ASSERT(ret == 0);
				718
				719	#if defined(MBEDTLS_ECP_C)
				720	if (curves != NULL) {
				721	mbedtls_ssl_conf_curves(&(ep->conf), curves);
				722	}
				723	#else
				724	(void) curves;
				725	#endif
				726
				727	ret = mbedtls_ssl_setup(&(ep->ssl), &(ep->conf));
				728	TEST_ASSERT(ret == 0);
				729
				730	#if defined(MBEDTLS_SSL_PROTO_DTLS) && defined(MBEDTLS_SSL_SRV_C)
				731	if (endpoint_type == MBEDTLS_SSL_IS_SERVER && dtls_context != NULL) {
				732	mbedtls_ssl_conf_dtls_cookies(&(ep->conf), NULL, NULL, NULL);
				733	}
				734	#endif
				735
				736	ret = mbedtls_test_ssl_endpoint_certificate_init(ep, pk_alg);
				737	TEST_ASSERT(ret == 0);
				738
				739	exit:
				740	return ret;
				741	}
				742
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	743	void mbedtls_test_ssl_endpoint_free(
				744	mbedtls_test_ssl_endpoint *ep,
				745	mbedtls_test_message_socket_context *context)
				746	{
				747	mbedtls_endpoint_certificate_free(ep);
				748
				749	mbedtls_ssl_free(&(ep->ssl));
				750	mbedtls_ssl_config_free(&(ep->conf));
				751	mbedtls_ctr_drbg_free(&(ep->ctr_drbg));
				752	mbedtls_entropy_free(&(ep->entropy));
				753
				754	if (context != NULL) {
				755	mbedtls_test_message_socket_close(context);
				756	} else {
				757	mbedtls_test_mock_socket_close(&(ep->socket));
				758	}
				759	}
				760
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	761	int mbedtls_test_move_handshake_to_state(mbedtls_ssl_context *ssl,
				762	mbedtls_ssl_context *second_ssl,
				763	int state)
				764	{
				765	enum { BUFFSIZE = 1024 };
				766	int max_steps = 1000;
				767	int ret = 0;
				768
				769	if (ssl == NULL \|\| second_ssl == NULL) {
				770	return MBEDTLS_ERR_SSL_BAD_INPUT_DATA;
				771	}
				772
				773	/* Perform communication via connected sockets */
				774	while ((ssl->state != state) && (--max_steps >= 0)) {
				775	/* If /p second_ssl ends the handshake procedure before /p ssl then
				776	* there is no need to call the next step */
				777	if (second_ssl->state != MBEDTLS_SSL_HANDSHAKE_OVER) {
				778	ret = mbedtls_ssl_handshake_step(second_ssl);
				779	if (ret != 0 && ret != MBEDTLS_ERR_SSL_WANT_READ &&
				780	ret != MBEDTLS_ERR_SSL_WANT_WRITE) {
				781	return ret;
				782	}
				783	}
				784
				785	/* We only care about the \p ssl state and returns, so we call it last,
				786	* to leave the iteration as soon as the state is as expected. */
				787	ret = mbedtls_ssl_handshake_step(ssl);
				788	if (ret != 0 && ret != MBEDTLS_ERR_SSL_WANT_READ &&
				789	ret != MBEDTLS_ERR_SSL_WANT_WRITE) {
				790	return ret;
				791	}
				792	}
				793
				794	return (max_steps >= 0) ? ret : -1;
				795	}
				796
Yanray Wang	1ef77c0	2023-03-14 16:59:00 +0800	[diff] [blame]	797	#endif /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C &&
				798	MBEDTLS_ENTROPY_C && MBEDTLS_CTR_DRBG_C */
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	799
				800	/*
				801	* Write application data. Increase write counter if necessary.
				802	*/
				803	int mbedtls_ssl_write_fragment(mbedtls_ssl_context *ssl,
				804	unsigned char *buf, int buf_len,
				805	int *written,
				806	const int expected_fragments)
				807	{
				808	/* Verify that calling mbedtls_ssl_write with a NULL buffer and zero length is
				809	* a valid no-op for TLS connections. */
				810	if (ssl->conf->transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
				811	TEST_ASSERT(mbedtls_ssl_write(ssl, NULL, 0) == 0);
				812	}
				813
				814	int ret = mbedtls_ssl_write(ssl, buf + written, buf_len - written);
				815	if (ret > 0) {
				816	*written += ret;
				817	}
				818
				819	if (expected_fragments == 0) {
				820	/* Used for DTLS and the message size larger than MFL. In that case
				821	* the message can not be fragmented and the library should return
				822	* MBEDTLS_ERR_SSL_BAD_INPUT_DATA error. This error must be returned
				823	* to prevent a dead loop inside mbedtls_exchange_data(). */
				824	return ret;
				825	} else if (expected_fragments == 1) {
				826	/* Used for TLS/DTLS and the message size lower than MFL */
				827	TEST_ASSERT(ret == buf_len \|\|
				828	ret == MBEDTLS_ERR_SSL_WANT_READ \|\|
				829	ret == MBEDTLS_ERR_SSL_WANT_WRITE);
				830	} else {
				831	/* Used for TLS and the message size larger than MFL */
				832	TEST_ASSERT(expected_fragments > 1);
				833	TEST_ASSERT((ret >= 0 && ret <= buf_len) \|\|
				834	ret == MBEDTLS_ERR_SSL_WANT_READ \|\|
				835	ret == MBEDTLS_ERR_SSL_WANT_WRITE);
				836	}
				837
				838	return 0;
				839
				840	exit:
				841	/* Some of the tests failed */
				842	return -1;
				843	}
				844
				845	/*
				846	* Read application data and increase read counter and fragments counter
				847	* if necessary.
				848	*/
				849	int mbedtls_ssl_read_fragment(mbedtls_ssl_context *ssl,
				850	unsigned char *buf, int buf_len,
				851	int read, int fragments,
				852	const int expected_fragments)
				853	{
				854	/* Verify that calling mbedtls_ssl_write with a NULL buffer and zero length is
				855	* a valid no-op for TLS connections. */
				856	if (ssl->conf->transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
				857	TEST_ASSERT(mbedtls_ssl_read(ssl, NULL, 0) == 0);
				858	}
				859
				860	int ret = mbedtls_ssl_read(ssl, buf + read, buf_len - read);
				861	if (ret > 0) {
				862	(*fragments)++;
				863	*read += ret;
				864	}
				865
				866	if (expected_fragments == 0) {
				867	TEST_ASSERT(ret == 0);
				868	} else if (expected_fragments == 1) {
				869	TEST_ASSERT(ret == buf_len \|\|
				870	ret == MBEDTLS_ERR_SSL_WANT_READ \|\|
				871	ret == MBEDTLS_ERR_SSL_WANT_WRITE);
				872	} else {
				873	TEST_ASSERT(expected_fragments > 1);
				874	TEST_ASSERT((ret >= 0 && ret <= buf_len) \|\|
				875	ret == MBEDTLS_ERR_SSL_WANT_READ \|\|
				876	ret == MBEDTLS_ERR_SSL_WANT_WRITE);
				877	}
				878
				879	return 0;
				880
				881	exit:
				882	/* Some of the tests failed */
				883	return -1;
				884	}
				885
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	886	void set_ciphersuite(mbedtls_ssl_config conf, const char cipher,
				887	int *forced_ciphersuite)
				888	{
				889	const mbedtls_ssl_ciphersuite_t *ciphersuite_info;
				890	forced_ciphersuite[0] = mbedtls_ssl_get_ciphersuite_id(cipher);
				891	forced_ciphersuite[1] = 0;
				892
				893	ciphersuite_info =
				894	mbedtls_ssl_ciphersuite_from_id(forced_ciphersuite[0]);
				895
				896	TEST_ASSERT(ciphersuite_info != NULL);
				897	TEST_ASSERT(ciphersuite_info->min_minor_ver <= conf->max_minor_ver);
				898	TEST_ASSERT(ciphersuite_info->max_minor_ver >= conf->min_minor_ver);
				899
				900	if (conf->max_minor_ver > ciphersuite_info->max_minor_ver) {
				901	conf->max_minor_ver = ciphersuite_info->max_minor_ver;
				902	}
				903	if (conf->min_minor_ver < ciphersuite_info->min_minor_ver) {
				904	conf->min_minor_ver = ciphersuite_info->min_minor_ver;
				905	}
				906
				907	mbedtls_ssl_conf_ciphersuites(conf, forced_ciphersuite);
				908
				909	exit:
				910	return;
				911	}
				912
				913	int psk_dummy_callback(void p_info, mbedtls_ssl_context ssl,
				914	const unsigned char *name, size_t name_len)
				915	{
				916	(void) p_info;
				917	(void) ssl;
				918	(void) name;
				919	(void) name_len;
				920
				921	return 0;
				922	}
				923
				924	#if MBEDTLS_SSL_CID_OUT_LEN_MAX > MBEDTLS_SSL_CID_IN_LEN_MAX
				925	#define SSL_CID_LEN_MIN MBEDTLS_SSL_CID_IN_LEN_MAX
				926	#else
				927	#define SSL_CID_LEN_MIN MBEDTLS_SSL_CID_OUT_LEN_MAX
				928	#endif
				929
				930	int mbedtls_test_ssl_build_transforms(mbedtls_ssl_transform *t_in,
				931	mbedtls_ssl_transform *t_out,
				932	int cipher_type, int hash_id,
				933	int etm, int tag_mode, int ver,
				934	size_t cid0_len,
				935	size_t cid1_len)
				936	{
				937	mbedtls_cipher_info_t const *cipher_info;
				938	int ret = 0;
				939
				940	size_t keylen, maclen, ivlen;
				941	unsigned char key0 = NULL, key1 = NULL;
				942	unsigned char md0 = NULL, md1 = NULL;
				943	unsigned char iv_enc[16], iv_dec[16];
				944
				945	#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
				946	unsigned char cid0[SSL_CID_LEN_MIN];
				947	unsigned char cid1[SSL_CID_LEN_MIN];
				948
				949	mbedtls_test_rnd_std_rand(NULL, cid0, sizeof(cid0));
				950	mbedtls_test_rnd_std_rand(NULL, cid1, sizeof(cid1));
				951	#else
				952	((void) cid0_len);
				953	((void) cid1_len);
				954	#endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
				955
				956	maclen = 0;
				957
				958	/* Pick cipher */
				959	cipher_info = mbedtls_cipher_info_from_type(cipher_type);
				960	CHK(cipher_info != NULL);
				961	CHK(cipher_info->iv_size <= 16);
				962	CHK(cipher_info->key_bitlen % 8 == 0);
				963
				964	/* Pick keys */
				965	keylen = cipher_info->key_bitlen / 8;
				966	/* Allocate `keylen + 1` bytes to ensure that we get
				967	* a non-NULL pointers from `mbedtls_calloc` even if
				968	* `keylen == 0` in the case of the NULL cipher. */
				969	CHK((key0 = mbedtls_calloc(1, keylen + 1)) != NULL);
				970	CHK((key1 = mbedtls_calloc(1, keylen + 1)) != NULL);
				971	memset(key0, 0x1, keylen);
				972	memset(key1, 0x2, keylen);
				973
				974	/* Setup cipher contexts */
				975	CHK(mbedtls_cipher_setup(&t_in->cipher_ctx_enc, cipher_info) == 0);
				976	CHK(mbedtls_cipher_setup(&t_in->cipher_ctx_dec, cipher_info) == 0);
				977	CHK(mbedtls_cipher_setup(&t_out->cipher_ctx_enc, cipher_info) == 0);
				978	CHK(mbedtls_cipher_setup(&t_out->cipher_ctx_dec, cipher_info) == 0);
				979
				980	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				981	if (cipher_info->mode == MBEDTLS_MODE_CBC) {
				982	CHK(mbedtls_cipher_set_padding_mode(&t_in->cipher_ctx_enc,
				983	MBEDTLS_PADDING_NONE) == 0);
				984	CHK(mbedtls_cipher_set_padding_mode(&t_in->cipher_ctx_dec,
				985	MBEDTLS_PADDING_NONE) == 0);
				986	CHK(mbedtls_cipher_set_padding_mode(&t_out->cipher_ctx_enc,
				987	MBEDTLS_PADDING_NONE) == 0);
				988	CHK(mbedtls_cipher_set_padding_mode(&t_out->cipher_ctx_dec,
				989	MBEDTLS_PADDING_NONE) == 0);
				990	}
				991	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				992
				993	CHK(mbedtls_cipher_setkey(&t_in->cipher_ctx_enc, key0,
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	994	(keylen << 3 > INT_MAX) ? INT_MAX : (int) keylen << 3,
				995	MBEDTLS_ENCRYPT)
				996	== 0);
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	997	CHK(mbedtls_cipher_setkey(&t_in->cipher_ctx_dec, key1,
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	998	(keylen << 3 > INT_MAX) ? INT_MAX : (int) keylen << 3,
				999	MBEDTLS_DECRYPT)
				1000	== 0);
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1001	CHK(mbedtls_cipher_setkey(&t_out->cipher_ctx_enc, key1,
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	1002	(keylen << 3 > INT_MAX) ? INT_MAX : (int) keylen << 3,
				1003	MBEDTLS_ENCRYPT)
				1004	== 0);
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1005	CHK(mbedtls_cipher_setkey(&t_out->cipher_ctx_dec, key0,
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	1006	(keylen << 3 > INT_MAX) ? INT_MAX : (int) keylen << 3,
				1007	MBEDTLS_DECRYPT)
				1008	== 0);
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1009
				1010	/* Setup MAC contexts */
				1011	#if defined(MBEDTLS_SSL_SOME_MODES_USE_MAC)
				1012	if (cipher_info->mode == MBEDTLS_MODE_CBC \|\|
				1013	cipher_info->mode == MBEDTLS_MODE_STREAM) {
				1014	mbedtls_md_info_t const *md_info;
				1015
				1016	/* Pick hash */
				1017	md_info = mbedtls_md_info_from_type(hash_id);
				1018	CHK(md_info != NULL);
				1019
				1020	/* Pick hash keys */
				1021	maclen = mbedtls_md_get_size(md_info);
				1022	CHK((md0 = mbedtls_calloc(1, maclen)) != NULL);
				1023	CHK((md1 = mbedtls_calloc(1, maclen)) != NULL);
				1024	memset(md0, 0x5, maclen);
				1025	memset(md1, 0x6, maclen);
				1026
				1027	CHK(mbedtls_md_setup(&t_out->md_ctx_enc, md_info, 1) == 0);
				1028	CHK(mbedtls_md_setup(&t_out->md_ctx_dec, md_info, 1) == 0);
				1029	CHK(mbedtls_md_setup(&t_in->md_ctx_enc, md_info, 1) == 0);
				1030	CHK(mbedtls_md_setup(&t_in->md_ctx_dec, md_info, 1) == 0);
				1031
				1032	if (ver > MBEDTLS_SSL_MINOR_VERSION_0) {
				1033	CHK(mbedtls_md_hmac_starts(&t_in->md_ctx_enc,
				1034	md0, maclen) == 0);
				1035	CHK(mbedtls_md_hmac_starts(&t_in->md_ctx_dec,
				1036	md1, maclen) == 0);
				1037	CHK(mbedtls_md_hmac_starts(&t_out->md_ctx_enc,
				1038	md1, maclen) == 0);
				1039	CHK(mbedtls_md_hmac_starts(&t_out->md_ctx_dec,
				1040	md0, maclen) == 0);
				1041	}
				1042	#if defined(MBEDTLS_SSL_PROTO_SSL3)
				1043	else {
				1044	memcpy(&t_in->mac_enc, md0, maclen);
				1045	memcpy(&t_in->mac_dec, md1, maclen);
				1046	memcpy(&t_out->mac_enc, md1, maclen);
				1047	memcpy(&t_out->mac_dec, md0, maclen);
				1048	}
				1049	#endif
				1050	}
				1051	#else
				1052	((void) hash_id);
				1053	#endif /* MBEDTLS_SSL_SOME_MODES_USE_MAC */
				1054
				1055
				1056	/* Pick IV's (regardless of whether they
				1057	* are being used by the transform). */
				1058	ivlen = cipher_info->iv_size;
				1059	memset(iv_enc, 0x3, sizeof(iv_enc));
				1060	memset(iv_dec, 0x4, sizeof(iv_dec));
				1061
				1062	/*
				1063	* Setup transforms
				1064	*/
				1065
				1066	#if defined(MBEDTLS_SSL_ENCRYPT_THEN_MAC) && \
				1067	defined(MBEDTLS_SSL_SOME_MODES_USE_MAC)
				1068	t_out->encrypt_then_mac = etm;
				1069	t_in->encrypt_then_mac = etm;
				1070	#else
				1071	((void) etm);
				1072	#endif
				1073
				1074	t_out->minor_ver = ver;
				1075	t_in->minor_ver = ver;
				1076	t_out->ivlen = ivlen;
				1077	t_in->ivlen = ivlen;
				1078
				1079	switch (cipher_info->mode) {
				1080	case MBEDTLS_MODE_GCM:
				1081	case MBEDTLS_MODE_CCM:
				1082	#if defined(MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL)
				1083	if (ver == MBEDTLS_SSL_MINOR_VERSION_4) {
				1084	t_out->fixed_ivlen = 12;
				1085	t_in->fixed_ivlen = 12;
				1086	} else
				1087	#endif /* MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL */
				1088	{
				1089	t_out->fixed_ivlen = 4;
				1090	t_in->fixed_ivlen = 4;
				1091	}
				1092	t_out->maclen = 0;
				1093	t_in->maclen = 0;
				1094	switch (tag_mode) {
				1095	case 0: /* Full tag */
				1096	t_out->taglen = 16;
				1097	t_in->taglen = 16;
				1098	break;
				1099	case 1: /* Partial tag */
				1100	t_out->taglen = 8;
				1101	t_in->taglen = 8;
				1102	break;
				1103	default:
				1104	ret = 1;
				1105	goto cleanup;
				1106	}
				1107	break;
				1108
				1109	case MBEDTLS_MODE_CHACHAPOLY:
				1110	t_out->fixed_ivlen = 12;
				1111	t_in->fixed_ivlen = 12;
				1112	t_out->maclen = 0;
				1113	t_in->maclen = 0;
				1114	switch (tag_mode) {
				1115	case 0: /* Full tag */
				1116	t_out->taglen = 16;
				1117	t_in->taglen = 16;
				1118	break;
				1119	case 1: /* Partial tag */
				1120	t_out->taglen = 8;
				1121	t_in->taglen = 8;
				1122	break;
				1123	default:
				1124	ret = 1;
				1125	goto cleanup;
				1126	}
				1127	break;
				1128
				1129	case MBEDTLS_MODE_STREAM:
				1130	case MBEDTLS_MODE_CBC:
				1131	t_out->fixed_ivlen = 0; /* redundant, must be 0 */
				1132	t_in->fixed_ivlen = 0; /* redundant, must be 0 */
				1133	t_out->taglen = 0;
				1134	t_in->taglen = 0;
				1135	switch (tag_mode) {
				1136	case 0: /* Full tag */
				1137	t_out->maclen = maclen;
				1138	t_in->maclen = maclen;
				1139	break;
				1140	case 1: /* Partial tag */
				1141	t_out->maclen = 10;
				1142	t_in->maclen = 10;
				1143	break;
				1144	default:
				1145	ret = 1;
				1146	goto cleanup;
				1147	}
				1148	break;
				1149	default:
				1150	ret = 1;
				1151	goto cleanup;
				1152	break;
				1153	}
				1154
				1155	/* Setup IV's */
				1156
				1157	memcpy(&t_in->iv_dec, iv_dec, sizeof(iv_dec));
				1158	memcpy(&t_in->iv_enc, iv_enc, sizeof(iv_enc));
				1159	memcpy(&t_out->iv_dec, iv_enc, sizeof(iv_enc));
				1160	memcpy(&t_out->iv_enc, iv_dec, sizeof(iv_dec));
				1161
				1162	#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
				1163	/* Add CID */
				1164	memcpy(&t_in->in_cid, cid0, cid0_len);
				1165	memcpy(&t_in->out_cid, cid1, cid1_len);
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	1166	t_in->in_cid_len = (uint8_t) cid0_len;
				1167	t_in->out_cid_len = (uint8_t) cid1_len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1168	memcpy(&t_out->in_cid, cid1, cid1_len);
				1169	memcpy(&t_out->out_cid, cid0, cid0_len);
Yanray Wang	d2696f2	2022-11-03 11:51:59 +0800	[diff] [blame^]	1170	t_out->in_cid_len = (uint8_t) cid1_len;
				1171	t_out->out_cid_len = (uint8_t) cid0_len;
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1172	#endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
				1173
				1174	cleanup:
				1175
				1176	mbedtls_free(key0);
				1177	mbedtls_free(key1);
				1178
				1179	mbedtls_free(md0);
				1180	mbedtls_free(md1);
				1181
				1182	return ret;
				1183	}
				1184
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1185	int mbedtls_test_ssl_populate_session(mbedtls_ssl_session *session,
				1186	int ticket_len,
				1187	const char *crt_file)
				1188	{
				1189	#if defined(MBEDTLS_HAVE_TIME)
				1190	session->start = mbedtls_time(NULL) - 42;
				1191	#endif
				1192	session->ciphersuite = 0xabcd;
				1193	session->compression = 1;
				1194	session->id_len = sizeof(session->id);
				1195	memset(session->id, 66, session->id_len);
				1196	memset(session->master, 17, sizeof(session->master));
				1197
				1198	#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
				1199	defined(MBEDTLS_CERTS_C) && \
				1200	defined(MBEDTLS_FS_IO)
				1201	if (strlen(crt_file) != 0) {
				1202	mbedtls_x509_crt tmp_crt;
				1203	int ret;
				1204
				1205	mbedtls_x509_crt_init(&tmp_crt);
				1206	ret = mbedtls_x509_crt_parse_file(&tmp_crt, crt_file);
				1207	if (ret != 0) {
				1208	return ret;
				1209	}
				1210
				1211	#if defined(MBEDTLS_SSL_KEEP_PEER_CERTIFICATE)
				1212	/* Move temporary CRT. */
				1213	session->peer_cert = mbedtls_calloc(1, sizeof(*session->peer_cert));
				1214	if (session->peer_cert == NULL) {
				1215	return -1;
				1216	}
				1217	*session->peer_cert = tmp_crt;
				1218	memset(&tmp_crt, 0, sizeof(tmp_crt));
				1219	#else /* MBEDTLS_SSL_KEEP_PEER_CERTIFICATE */
				1220	/* Calculate digest of temporary CRT. */
				1221	session->peer_cert_digest =
				1222	mbedtls_calloc(1, MBEDTLS_SSL_PEER_CERT_DIGEST_DFL_LEN);
				1223	if (session->peer_cert_digest == NULL) {
				1224	return -1;
				1225	}
				1226	ret = mbedtls_md(mbedtls_md_info_from_type(
				1227	MBEDTLS_SSL_PEER_CERT_DIGEST_DFL_TYPE),
				1228	tmp_crt.raw.p, tmp_crt.raw.len,
				1229	session->peer_cert_digest);
				1230	if (ret != 0) {
				1231	return ret;
				1232	}
				1233	session->peer_cert_digest_type =
				1234	MBEDTLS_SSL_PEER_CERT_DIGEST_DFL_TYPE;
				1235	session->peer_cert_digest_len =
				1236	MBEDTLS_SSL_PEER_CERT_DIGEST_DFL_LEN;
				1237	#endif /* MBEDTLS_SSL_KEEP_PEER_CERTIFICATE */
				1238
				1239	mbedtls_x509_crt_free(&tmp_crt);
				1240	}
				1241	#else /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C && MBEDTLS_FS_IO */
				1242	(void) crt_file;
				1243	#endif /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C && MBEDTLS_FS_IO */
				1244	session->verify_result = 0xdeadbeef;
				1245
				1246	#if defined(MBEDTLS_SSL_SESSION_TICKETS) && defined(MBEDTLS_SSL_CLI_C)
				1247	if (ticket_len != 0) {
				1248	session->ticket = mbedtls_calloc(1, ticket_len);
				1249	if (session->ticket == NULL) {
				1250	return -1;
				1251	}
				1252	memset(session->ticket, 33, ticket_len);
				1253	}
				1254	session->ticket_len = ticket_len;
				1255	session->ticket_lifetime = 86401;
				1256	#else
				1257	(void) ticket_len;
				1258	#endif
				1259
				1260	#if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
				1261	session->mfl_code = 1;
				1262	#endif
				1263	#if defined(MBEDTLS_SSL_TRUNCATED_HMAC)
				1264	session->trunc_hmac = 1;
				1265	#endif
				1266	#if defined(MBEDTLS_SSL_ENCRYPT_THEN_MAC)
				1267	session->encrypt_then_mac = 1;
				1268	#endif
				1269
				1270	return 0;
				1271	}
				1272
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1273	int mbedtls_exchange_data(mbedtls_ssl_context *ssl_1,
				1274	int msg_len_1, const int expected_fragments_1,
				1275	mbedtls_ssl_context *ssl_2,
				1276	int msg_len_2, const int expected_fragments_2)
				1277	{
				1278	unsigned char *msg_buf_1 = malloc(msg_len_1);
				1279	unsigned char *msg_buf_2 = malloc(msg_len_2);
				1280	unsigned char *in_buf_1 = malloc(msg_len_2);
				1281	unsigned char *in_buf_2 = malloc(msg_len_1);
				1282	int msg_type, ret = -1;
				1283
				1284	/* Perform this test with two message types. At first use a message
				1285	* consisting of only 0x00 for the client and only 0xFF for the server.
				1286	* At the second time use message with generated data */
				1287	for (msg_type = 0; msg_type < 2; msg_type++) {
				1288	int written_1 = 0;
				1289	int written_2 = 0;
				1290	int read_1 = 0;
				1291	int read_2 = 0;
				1292	int fragments_1 = 0;
				1293	int fragments_2 = 0;
				1294
				1295	if (msg_type == 0) {
				1296	memset(msg_buf_1, 0x00, msg_len_1);
				1297	memset(msg_buf_2, 0xff, msg_len_2);
				1298	} else {
				1299	int i, j = 0;
				1300	for (i = 0; i < msg_len_1; i++) {
				1301	msg_buf_1[i] = j++ & 0xFF;
				1302	}
				1303	for (i = 0; i < msg_len_2; i++) {
				1304	msg_buf_2[i] = (j -= 5) & 0xFF;
				1305	}
				1306	}
				1307
				1308	while (read_1 < msg_len_2 \|\| read_2 < msg_len_1) {
				1309	/* ssl_1 sending */
				1310	if (msg_len_1 > written_1) {
				1311	ret = mbedtls_ssl_write_fragment(ssl_1, msg_buf_1,
				1312	msg_len_1, &written_1,
				1313	expected_fragments_1);
				1314	if (expected_fragments_1 == 0) {
				1315	/* This error is expected when the message is too large and
				1316	* cannot be fragmented */
				1317	TEST_ASSERT(ret == MBEDTLS_ERR_SSL_BAD_INPUT_DATA);
				1318	msg_len_1 = 0;
				1319	} else {
				1320	TEST_ASSERT(ret == 0);
				1321	}
				1322	}
				1323
				1324	/* ssl_2 sending */
				1325	if (msg_len_2 > written_2) {
				1326	ret = mbedtls_ssl_write_fragment(ssl_2, msg_buf_2,
				1327	msg_len_2, &written_2,
				1328	expected_fragments_2);
				1329	if (expected_fragments_2 == 0) {
				1330	/* This error is expected when the message is too large and
				1331	* cannot be fragmented */
				1332	TEST_ASSERT(ret == MBEDTLS_ERR_SSL_BAD_INPUT_DATA);
				1333	msg_len_2 = 0;
				1334	} else {
				1335	TEST_ASSERT(ret == 0);
				1336	}
				1337	}
				1338
				1339	/* ssl_1 reading */
				1340	if (read_1 < msg_len_2) {
				1341	ret = mbedtls_ssl_read_fragment(ssl_1, in_buf_1,
				1342	msg_len_2, &read_1,
				1343	&fragments_2,
				1344	expected_fragments_2);
				1345	TEST_ASSERT(ret == 0);
				1346	}
				1347
				1348	/* ssl_2 reading */
				1349	if (read_2 < msg_len_1) {
				1350	ret = mbedtls_ssl_read_fragment(ssl_2, in_buf_2,
				1351	msg_len_1, &read_2,
				1352	&fragments_1,
				1353	expected_fragments_1);
				1354	TEST_ASSERT(ret == 0);
				1355	}
				1356	}
				1357
				1358	ret = -1;
				1359	TEST_ASSERT(0 == memcmp(msg_buf_1, in_buf_2, msg_len_1));
				1360	TEST_ASSERT(0 == memcmp(msg_buf_2, in_buf_1, msg_len_2));
				1361	TEST_ASSERT(fragments_1 == expected_fragments_1);
				1362	TEST_ASSERT(fragments_2 == expected_fragments_2);
				1363	}
				1364
				1365	ret = 0;
				1366
				1367	exit:
				1368	free(msg_buf_1);
				1369	free(in_buf_1);
				1370	free(msg_buf_2);
				1371	free(in_buf_2);
				1372
				1373	return ret;
				1374	}
				1375
				1376	/*
				1377	* Perform data exchanging between \p ssl_1 and \p ssl_2. Both of endpoints
				1378	* must be initialized and connected beforehand.
				1379	*
				1380	* \retval 0 on success, otherwise error code.
				1381	*/
				1382	int exchange_data(mbedtls_ssl_context *ssl_1,
				1383	mbedtls_ssl_context *ssl_2)
				1384	{
				1385	return mbedtls_exchange_data(ssl_1, 256, 1,
				1386	ssl_2, 256, 1);
				1387	}
				1388
				1389	#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
				1390	defined(MBEDTLS_CERTS_C) && \
				1391	defined(MBEDTLS_ENTROPY_C) && \
				1392	defined(MBEDTLS_CTR_DRBG_C)
				1393	void mbedtls_test_ssl_perform_handshake(
				1394	mbedtls_test_handshake_test_options *options)
				1395	{
				1396	/* forced_ciphersuite needs to last until the end of the handshake */
				1397	int forced_ciphersuite[2];
				1398	enum { BUFFSIZE = 17000 };
				1399	mbedtls_test_ssl_endpoint client, server;
				1400	#if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
				1401	const char *psk_identity = "foo";
				1402	#endif
				1403	#if defined(MBEDTLS_TIMING_C)
				1404	mbedtls_timing_delay_context timer_client, timer_server;
				1405	#endif
				1406	#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
				1407	unsigned char *context_buf = NULL;
				1408	size_t context_buf_len;
				1409	#endif
				1410	#if defined(MBEDTLS_SSL_RENEGOTIATION)
				1411	int ret = -1;
				1412	#endif
				1413	int expected_handshake_result = 0;
				1414
				1415	USE_PSA_INIT();
				1416	mbedtls_platform_zeroize(&client, sizeof(client));
				1417	mbedtls_platform_zeroize(&server, sizeof(server));
				1418
				1419	mbedtls_test_ssl_message_queue server_queue, client_queue;
				1420	mbedtls_test_message_socket_context server_context, client_context;
				1421	mbedtls_test_message_socket_init(&server_context);
				1422	mbedtls_test_message_socket_init(&client_context);
				1423
				1424	/* Client side */
				1425	if (options->dtls != 0) {
				1426	TEST_ASSERT(mbedtls_test_ssl_endpoint_init(&client,
				1427	MBEDTLS_SSL_IS_CLIENT,
				1428	options->pk_alg,
				1429	&client_context,
				1430	&client_queue,
				1431	&server_queue, NULL) == 0);
				1432	#if defined(MBEDTLS_TIMING_C)
				1433	mbedtls_ssl_set_timer_cb(&client.ssl, &timer_client,
				1434	mbedtls_timing_set_delay,
				1435	mbedtls_timing_get_delay);
				1436	#endif
				1437	} else {
				1438	TEST_ASSERT(mbedtls_test_ssl_endpoint_init(&client,
				1439	MBEDTLS_SSL_IS_CLIENT,
				1440	options->pk_alg, NULL, NULL,
				1441	NULL, NULL) == 0);
				1442	}
				1443
				1444	if (options->client_min_version != TEST_SSL_MINOR_VERSION_NONE) {
				1445	mbedtls_ssl_conf_min_version(&client.conf, MBEDTLS_SSL_MAJOR_VERSION_3,
				1446	options->client_min_version);
				1447	}
				1448
				1449	if (options->client_max_version != TEST_SSL_MINOR_VERSION_NONE) {
				1450	mbedtls_ssl_conf_max_version(&client.conf, MBEDTLS_SSL_MAJOR_VERSION_3,
				1451	options->client_max_version);
				1452	}
				1453
				1454	if (strlen(options->cipher) > 0) {
				1455	set_ciphersuite(&client.conf, options->cipher, forced_ciphersuite);
				1456	}
				1457
				1458	#if defined(MBEDTLS_DEBUG_C)
				1459	if (options->cli_log_fun) {
				1460	mbedtls_debug_set_threshold(4);
				1461	mbedtls_ssl_conf_dbg(&client.conf, options->cli_log_fun,
				1462	options->cli_log_obj);
				1463	}
				1464	#endif
				1465
				1466	/* Server side */
				1467	if (options->dtls != 0) {
				1468	TEST_ASSERT(mbedtls_test_ssl_endpoint_init(&server,
				1469	MBEDTLS_SSL_IS_SERVER,
				1470	options->pk_alg,
				1471	&server_context,
				1472	&server_queue,
				1473	&client_queue, NULL) == 0);
				1474	#if defined(MBEDTLS_TIMING_C)
				1475	mbedtls_ssl_set_timer_cb(&server.ssl, &timer_server,
				1476	mbedtls_timing_set_delay,
				1477	mbedtls_timing_get_delay);
				1478	#endif
				1479	} else {
				1480	TEST_ASSERT(mbedtls_test_ssl_endpoint_init(&server,
				1481	MBEDTLS_SSL_IS_SERVER,
				1482	options->pk_alg, NULL, NULL,
				1483	NULL, NULL) == 0);
				1484	}
				1485
				1486	mbedtls_ssl_conf_authmode(&server.conf, options->srv_auth_mode);
				1487
				1488	if (options->server_min_version != TEST_SSL_MINOR_VERSION_NONE) {
				1489	mbedtls_ssl_conf_min_version(&server.conf, MBEDTLS_SSL_MAJOR_VERSION_3,
				1490	options->server_min_version);
				1491	}
				1492
				1493	if (options->server_max_version != TEST_SSL_MINOR_VERSION_NONE) {
				1494	mbedtls_ssl_conf_max_version(&server.conf, MBEDTLS_SSL_MAJOR_VERSION_3,
				1495	options->server_max_version);
				1496	}
				1497
				1498	#if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
				1499	TEST_ASSERT(mbedtls_ssl_conf_max_frag_len(&(server.conf),
				1500	(unsigned char) options->mfl)
				1501	== 0);
				1502	TEST_ASSERT(mbedtls_ssl_conf_max_frag_len(&(client.conf),
				1503	(unsigned char) options->mfl)
				1504	== 0);
				1505	#else
				1506	TEST_ASSERT(MBEDTLS_SSL_MAX_FRAG_LEN_NONE == options->mfl);
				1507	#endif /* MBEDTLS_SSL_MAX_FRAGMENT_LENGTH */
				1508
				1509	#if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
				1510	if (options->psk_str != NULL && options->psk_str->len > 0) {
				1511	TEST_ASSERT(mbedtls_ssl_conf_psk(
				1512	&client.conf, options->psk_str->x,
				1513	options->psk_str->len,
				1514	(const unsigned char *) psk_identity,
				1515	strlen(psk_identity)) == 0);
				1516
				1517	TEST_ASSERT(mbedtls_ssl_conf_psk(
				1518	&server.conf, options->psk_str->x,
				1519	options->psk_str->len,
				1520	(const unsigned char *) psk_identity,
				1521	strlen(psk_identity)) == 0);
				1522
				1523	mbedtls_ssl_conf_psk_cb(&server.conf, psk_dummy_callback, NULL);
				1524	}
				1525	#endif
				1526	#if defined(MBEDTLS_SSL_RENEGOTIATION)
				1527	if (options->renegotiate) {
				1528	mbedtls_ssl_conf_renegotiation(&(server.conf),
				1529	MBEDTLS_SSL_RENEGOTIATION_ENABLED);
				1530	mbedtls_ssl_conf_renegotiation(&(client.conf),
				1531	MBEDTLS_SSL_RENEGOTIATION_ENABLED);
				1532
				1533	mbedtls_ssl_conf_legacy_renegotiation(&(server.conf),
				1534	options->legacy_renegotiation);
				1535	mbedtls_ssl_conf_legacy_renegotiation(&(client.conf),
				1536	options->legacy_renegotiation);
				1537	}
				1538	#endif /* MBEDTLS_SSL_RENEGOTIATION */
				1539
				1540	#if defined(MBEDTLS_DEBUG_C)
				1541	if (options->srv_log_fun) {
				1542	mbedtls_debug_set_threshold(4);
				1543	mbedtls_ssl_conf_dbg(&server.conf, options->srv_log_fun,
				1544	options->srv_log_obj);
				1545	}
				1546	#endif
				1547
				1548	TEST_ASSERT(mbedtls_test_mock_socket_connect(&(client.socket),
				1549	&(server.socket),
				1550	BUFFSIZE) == 0);
				1551
				1552	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1553	if (options->resize_buffers != 0) {
				1554	/* Ensure that the buffer sizes are appropriate before resizes */
				1555	TEST_ASSERT(client.ssl.out_buf_len == MBEDTLS_SSL_OUT_BUFFER_LEN);
				1556	TEST_ASSERT(client.ssl.in_buf_len == MBEDTLS_SSL_IN_BUFFER_LEN);
				1557	TEST_ASSERT(server.ssl.out_buf_len == MBEDTLS_SSL_OUT_BUFFER_LEN);
				1558	TEST_ASSERT(server.ssl.in_buf_len == MBEDTLS_SSL_IN_BUFFER_LEN);
				1559	}
				1560	#endif
				1561
				1562	if (options->expected_negotiated_version == TEST_SSL_MINOR_VERSION_NONE) {
				1563	expected_handshake_result = MBEDTLS_ERR_SSL_BAD_HS_PROTOCOL_VERSION;
				1564	}
				1565
				1566	TEST_ASSERT(mbedtls_test_move_handshake_to_state(
				1567	&(client.ssl), &(server.ssl), MBEDTLS_SSL_HANDSHAKE_OVER)
				1568	== expected_handshake_result);
				1569
				1570	if (expected_handshake_result != 0) {
				1571	/* Connection will have failed by this point, skip to cleanup */
				1572	goto exit;
				1573	}
				1574
				1575	TEST_ASSERT(client.ssl.state == MBEDTLS_SSL_HANDSHAKE_OVER);
				1576	TEST_ASSERT(server.ssl.state == MBEDTLS_SSL_HANDSHAKE_OVER);
				1577
				1578	/* Check that we agree on the version... */
				1579	TEST_ASSERT(client.ssl.minor_ver == server.ssl.minor_ver);
				1580
				1581	/* And check that the version negotiated is the expected one. */
				1582	TEST_EQUAL(client.ssl.minor_ver, options->expected_negotiated_version);
				1583
				1584	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1585	if (options->resize_buffers != 0) {
				1586	if (options->expected_negotiated_version != MBEDTLS_SSL_MINOR_VERSION_0 &&
				1587	options->expected_negotiated_version != MBEDTLS_SSL_MINOR_VERSION_1) {
				1588	/* A server, when using DTLS, might delay a buffer resize to happen
				1589	* after it receives a message, so we force it. */
				1590	TEST_ASSERT(exchange_data(&(client.ssl), &(server.ssl)) == 0);
				1591
				1592	TEST_ASSERT(client.ssl.out_buf_len ==
				1593	mbedtls_ssl_get_output_buflen(&client.ssl));
				1594	TEST_ASSERT(client.ssl.in_buf_len ==
				1595	mbedtls_ssl_get_input_buflen(&client.ssl));
				1596	TEST_ASSERT(server.ssl.out_buf_len ==
				1597	mbedtls_ssl_get_output_buflen(&server.ssl));
				1598	TEST_ASSERT(server.ssl.in_buf_len ==
				1599	mbedtls_ssl_get_input_buflen(&server.ssl));
				1600	}
				1601	}
				1602	#endif
				1603
				1604	if (options->cli_msg_len != 0 \|\| options->srv_msg_len != 0) {
				1605	/* Start data exchanging test */
				1606	TEST_ASSERT(mbedtls_exchange_data(&(client.ssl), options->cli_msg_len,
				1607	options->expected_cli_fragments,
				1608	&(server.ssl), options->srv_msg_len,
				1609	options->expected_srv_fragments)
				1610	== 0);
				1611	}
				1612	#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
				1613	if (options->serialize == 1) {
				1614	TEST_ASSERT(options->dtls == 1);
				1615
				1616	TEST_ASSERT(mbedtls_ssl_context_save(&(server.ssl), NULL,
				1617	0, &context_buf_len)
				1618	== MBEDTLS_ERR_SSL_BUFFER_TOO_SMALL);
				1619
				1620	context_buf = mbedtls_calloc(1, context_buf_len);
				1621	TEST_ASSERT(context_buf != NULL);
				1622
				1623	TEST_ASSERT(mbedtls_ssl_context_save(&(server.ssl), context_buf,
				1624	context_buf_len,
				1625	&context_buf_len)
				1626	== 0);
				1627
				1628	mbedtls_ssl_free(&(server.ssl));
				1629	mbedtls_ssl_init(&(server.ssl));
				1630
				1631	TEST_ASSERT(mbedtls_ssl_setup(&(server.ssl), &(server.conf)) == 0);
				1632
				1633	mbedtls_ssl_set_bio(&(server.ssl), &server_context,
				1634	mbedtls_test_mock_tcp_send_msg,
				1635	mbedtls_test_mock_tcp_recv_msg,
				1636	NULL);
				1637
				1638	#if defined(MBEDTLS_TIMING_C)
				1639	mbedtls_ssl_set_timer_cb(&server.ssl, &timer_server,
				1640	mbedtls_timing_set_delay,
				1641	mbedtls_timing_get_delay);
				1642	#endif
				1643	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1644	if (options->resize_buffers != 0) {
				1645	/* Ensure that the buffer sizes are appropriate before resizes */
				1646	TEST_ASSERT(server.ssl.out_buf_len == MBEDTLS_SSL_OUT_BUFFER_LEN);
				1647	TEST_ASSERT(server.ssl.in_buf_len == MBEDTLS_SSL_IN_BUFFER_LEN);
				1648	}
				1649	#endif
				1650	TEST_ASSERT(mbedtls_ssl_context_load(&(server.ssl), context_buf,
				1651	context_buf_len) == 0);
				1652
				1653	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1654	/* Validate buffer sizes after context deserialization */
				1655	if (options->resize_buffers != 0) {
				1656	TEST_ASSERT(server.ssl.out_buf_len ==
				1657	mbedtls_ssl_get_output_buflen(&server.ssl));
				1658	TEST_ASSERT(server.ssl.in_buf_len ==
				1659	mbedtls_ssl_get_input_buflen(&server.ssl));
				1660	}
				1661	#endif
				1662	/* Retest writing/reading */
				1663	if (options->cli_msg_len != 0 \|\| options->srv_msg_len != 0) {
				1664	TEST_ASSERT(mbedtls_exchange_data(
				1665	&(client.ssl),
				1666	options->cli_msg_len,
				1667	options->expected_cli_fragments,
				1668	&(server.ssl),
				1669	options->srv_msg_len,
				1670	options->expected_srv_fragments)
				1671	== 0);
				1672	}
				1673	}
				1674	#endif /* MBEDTLS_SSL_CONTEXT_SERIALIZATION */
				1675
				1676	#if defined(MBEDTLS_SSL_RENEGOTIATION)
				1677	if (options->renegotiate) {
				1678	/* Start test with renegotiation */
				1679	TEST_ASSERT(server.ssl.renego_status ==
				1680	MBEDTLS_SSL_INITIAL_HANDSHAKE);
				1681	TEST_ASSERT(client.ssl.renego_status ==
				1682	MBEDTLS_SSL_INITIAL_HANDSHAKE);
				1683
				1684	/* After calling this function for the server, it only sends a handshake
				1685	* request. All renegotiation should happen during data exchanging */
				1686	TEST_ASSERT(mbedtls_ssl_renegotiate(&(server.ssl)) == 0);
				1687	TEST_ASSERT(server.ssl.renego_status ==
				1688	MBEDTLS_SSL_RENEGOTIATION_PENDING);
				1689	TEST_ASSERT(client.ssl.renego_status ==
				1690	MBEDTLS_SSL_INITIAL_HANDSHAKE);
				1691
				1692	TEST_ASSERT(exchange_data(&(client.ssl), &(server.ssl)) == 0);
				1693	TEST_ASSERT(server.ssl.renego_status ==
				1694	MBEDTLS_SSL_RENEGOTIATION_DONE);
				1695	TEST_ASSERT(client.ssl.renego_status ==
				1696	MBEDTLS_SSL_RENEGOTIATION_DONE);
				1697
				1698	/* After calling mbedtls_ssl_renegotiate for the client,
				1699	* all renegotiation should happen inside this function.
				1700	* However in this test, we cannot perform simultaneous communication
				1701	* between client and server so this function will return waiting error
				1702	* on the socket. All rest of renegotiation should happen
				1703	* during data exchanging */
				1704	ret = mbedtls_ssl_renegotiate(&(client.ssl));
				1705	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1706	if (options->resize_buffers != 0) {
				1707	/* Ensure that the buffer sizes are appropriate before resizes */
				1708	TEST_ASSERT(client.ssl.out_buf_len == MBEDTLS_SSL_OUT_BUFFER_LEN);
				1709	TEST_ASSERT(client.ssl.in_buf_len == MBEDTLS_SSL_IN_BUFFER_LEN);
				1710	}
				1711	#endif
				1712	TEST_ASSERT(ret == 0 \|\|
				1713	ret == MBEDTLS_ERR_SSL_WANT_READ \|\|
				1714	ret == MBEDTLS_ERR_SSL_WANT_WRITE);
				1715	TEST_ASSERT(server.ssl.renego_status ==
				1716	MBEDTLS_SSL_RENEGOTIATION_DONE);
				1717	TEST_ASSERT(client.ssl.renego_status ==
				1718	MBEDTLS_SSL_RENEGOTIATION_IN_PROGRESS);
				1719
				1720	TEST_ASSERT(exchange_data(&(client.ssl), &(server.ssl)) == 0);
				1721	TEST_ASSERT(server.ssl.renego_status ==
				1722	MBEDTLS_SSL_RENEGOTIATION_DONE);
				1723	TEST_ASSERT(client.ssl.renego_status ==
				1724	MBEDTLS_SSL_RENEGOTIATION_DONE);
				1725	#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
				1726	/* Validate buffer sizes after renegotiation */
				1727	if (options->resize_buffers != 0) {
				1728	TEST_ASSERT(client.ssl.out_buf_len ==
				1729	mbedtls_ssl_get_output_buflen(&client.ssl));
				1730	TEST_ASSERT(client.ssl.in_buf_len ==
				1731	mbedtls_ssl_get_input_buflen(&client.ssl));
				1732	TEST_ASSERT(server.ssl.out_buf_len ==
				1733	mbedtls_ssl_get_output_buflen(&server.ssl));
				1734	TEST_ASSERT(server.ssl.in_buf_len ==
				1735	mbedtls_ssl_get_input_buflen(&server.ssl));
				1736	}
				1737	#endif /* MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH */
				1738	}
				1739	#endif /* MBEDTLS_SSL_RENEGOTIATION */
				1740
				1741	exit:
				1742	mbedtls_test_ssl_endpoint_free(&client,
				1743	options->dtls != 0 ? &client_context : NULL);
				1744	mbedtls_test_ssl_endpoint_free(&server,
				1745	options->dtls != 0 ? &server_context : NULL);
				1746	#if defined(MBEDTLS_DEBUG_C)
				1747	if (options->cli_log_fun \|\| options->srv_log_fun) {
				1748	mbedtls_debug_set_threshold(0);
				1749	}
				1750	#endif
				1751	#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
				1752	if (context_buf != NULL) {
				1753	mbedtls_free(context_buf);
				1754	}
				1755	#endif
				1756	}
Yanray Wang	1ef77c0	2023-03-14 16:59:00 +0800	[diff] [blame]	1757	#endif /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED && MBEDTLS_CERTS_C &&
				1758	MBEDTLS_ENTROPY_C && MBEDTLS_CTR_DRBG_C */
Yanray Wang	bd56b03	2023-03-14 14:36:48 +0800	[diff] [blame]	1759
Yanray Wang	4323e45	2023-03-14 16:52:06 +0800	[diff] [blame]	1760	#endif /* MBEDTLS_SSL_TLS_C */