TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 5659981cf86cb284625dae6a63bd621905a0a395 / . / tests / ssl-opt.sh
blob: 3a27aac5c45fa12c20346a9f6fbc18186f4266c6 [file] [log] [blame]
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1#!/bin/sh
2
Simon Butcher58eddef2016-05-19 23:43:11 +0100[diff] [blame]3# ssl-opt.sh
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]4#
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]5# Copyright The Mbed TLS Contributors
Bence Szépkútic7da1fe2020-05-26 01:54:15 +0200[diff] [blame]6# SPDX-License-Identifier: Apache-2.0
7#
8# Licensed under the Apache License, Version 2.0 (the "License"); you may
9# not use this file except in compliance with the License.
10# You may obtain a copy of the License at
11#
12# http://www.apache.org/licenses/LICENSE-2.0
13#
14# Unless required by applicable law or agreed to in writing, software
15# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
16# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
17# See the License for the specific language governing permissions and
18# limitations under the License.
19#
Simon Butcher58eddef2016-05-19 23:43:11 +0100[diff] [blame]20# Purpose
21#
22# Executes tests to prove various TLS/SSL options and extensions.
23#
24# The goal is not to cover every ciphersuite/version, but instead to cover
25# specific options (max fragment length, truncated hmac, etc) or procedures
26# (session resumption from cache or ticket, renego, etc).
27#
28# The tests assume a build with default options, with exceptions expressed
29# with a dependency. The tests focus on functionality and do not consider
30# performance.
31#
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]32
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]33set -u
34
Jaeden Amero6e70eb22019-07-03 13:51:04 +0100[diff] [blame]35# Limit the size of each log to 10 GiB, in case of failures with this script
36# where it may output seemingly unlimited length error logs.
37ulimit -f 20971520
38
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]39ORIGINAL_PWD=$PWD
40if ! cd "$(dirname "$0")"; then
41 exit 125
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]42fi
43
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]44# default values, can be overridden by the environment
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]45: ${P_SRV:=../programs/ssl/ssl_server2}
46: ${P_CLI:=../programs/ssl/ssl_client2}
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]47: ${P_PXY:=../programs/test/udp_proxy}
Jerry Yubbfa1d82021-12-06 16:52:57 +0800[diff] [blame]48: ${P_QUERY:=../programs/test/query_compile_time_config}
Manuel Pégourié-Gonnard89d40272022-12-19 11:42:12 +0100[diff] [blame]49: ${OPENSSL:=openssl}
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]50: ${GNUTLS_CLI:=gnutls-cli}
51: ${GNUTLS_SERV:=gnutls-serv}
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]52: ${PERL:=perl}
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]53
Manuel Pégourié-Gonnard89d40272022-12-19 11:42:12 +0100[diff] [blame]54# The OPENSSL variable used to be OPENSSL_CMD for historical reasons.
55# To help the migration, error out if the old variable is set,
56# but only if it has a different value than the new one.
57if [ "${OPENSSL_CMD+set}" = set ]; then
58 # the variable is set, we can now check its value
59 if [ "$OPENSSL_CMD" != "$OPENSSL" ]; then
60 echo "Please use OPENSSL instead of OPENSSL_CMD." >&2
61 exit 125
62 fi
63fi
64
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]65guess_config_name() {
66 if git diff --quiet ../include/mbedtls/config.h 2>/dev/null; then
67 echo "default"
68 else
69 echo "unknown"
70 fi
71}
72: ${MBEDTLS_TEST_OUTCOME_FILE=}
73: ${MBEDTLS_TEST_CONFIGURATION:="$(guess_config_name)"}
74: ${MBEDTLS_TEST_PLATFORM:="$(uname -s | tr -c \\n0-9A-Za-z _)-$(uname -m | tr -c \\n0-9A-Za-z _)"}
75
Manuel Pégourié-Gonnard89d40272022-12-19 11:42:12 +0100[diff] [blame]76O_SRV="$OPENSSL s_server -www -cert data_files/server5.crt -key data_files/server5.key"
77O_CLI="echo 'GET / HTTP/1.0' | $OPENSSL s_client"
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]78G_SRV="$GNUTLS_SERV --x509certfile data_files/server5.crt --x509keyfile data_files/server5.key"
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]79G_CLI="echo 'GET / HTTP/1.0' | $GNUTLS_CLI --x509cafile data_files/test-ca_cat12.crt"
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]80TCP_CLIENT="$PERL scripts/tcp_client.pl"
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]81
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]82# alternative versions of OpenSSL and GnuTLS (no default path)
83
84if [ -n "${OPENSSL_LEGACY:-}" ]; then
85 O_LEGACY_SRV="$OPENSSL_LEGACY s_server -www -cert data_files/server5.crt -key data_files/server5.key"
86 O_LEGACY_CLI="echo 'GET / HTTP/1.0' | $OPENSSL_LEGACY s_client"
87else
88 O_LEGACY_SRV=false
89 O_LEGACY_CLI=false
90fi
91
Paul Elliott633a74e2021-10-13 18:31:07 +0100[diff] [blame]92if [ -n "${OPENSSL_NEXT:-}" ]; then
93 O_NEXT_SRV="$OPENSSL_NEXT s_server -www -cert data_files/server5.crt -key data_files/server5.key"
94 O_NEXT_CLI="echo 'GET / HTTP/1.0' | $OPENSSL_NEXT s_client"
95else
96 O_NEXT_SRV=false
97 O_NEXT_CLI=false
98fi
99
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]100if [ -n "${GNUTLS_NEXT_SERV:-}" ]; then
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]101 G_NEXT_SRV="$GNUTLS_NEXT_SERV --x509certfile data_files/server5.crt --x509keyfile data_files/server5.key"
102else
103 G_NEXT_SRV=false
104fi
105
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]106if [ -n "${GNUTLS_NEXT_CLI:-}" ]; then
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]107 G_NEXT_CLI="echo 'GET / HTTP/1.0' | $GNUTLS_NEXT_CLI --x509cafile data_files/test-ca_cat12.crt"
108else
109 G_NEXT_CLI=false
110fi
111
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]112TESTS=0
113FAILS=0
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]114SKIPS=0
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]115
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]116CONFIG_H='../include/mbedtls/config.h'
Manuel Pégourié-Gonnard83d8c732014-04-07 13:24:21 +0200[diff] [blame]117
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]118MEMCHECK=0
Manuel Pégourié-Gonnard417d46c2014-03-13 19:17:53 +0100[diff] [blame]119FILTER='.*'
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]120EXCLUDE='^$'
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]121
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]122SHOW_TEST_NUMBER=0
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]123RUN_TEST_NUMBER=''
124
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]125PRESERVE_LOGS=0
126
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]127# Pick a "unique" server port in the range 10000-19999, and a proxy
128# port which is this plus 10000. Each port number may be independently
129# overridden by a command line option.
130SRV_PORT=$(($$ % 10000 + 10000))
131PXY_PORT=$((SRV_PORT + 10000))
132
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]133print_usage() {
134 echo "Usage: $0 [options]"
Manuel Pégourié-Gonnardf46f1282014-12-11 11:51:28 +0100[diff] [blame]135 printf " -h|--help\tPrint this help.\n"
136 printf " -m|--memcheck\tCheck memory leaks and errors.\n"
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]137 printf " -f|--filter\tOnly matching tests are executed (substring or BRE)\n"
138 printf " -e|--exclude\tMatching tests are excluded (substring or BRE)\n"
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]139 printf " -n|--number\tExecute only numbered test (comma-separated, e.g. '245,256')\n"
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]140 printf " -s|--show-numbers\tShow test numbers in front of test names\n"
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]141 printf " -p|--preserve-logs\tPreserve logs of successful tests as well\n"
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]142 printf " --outcome-file\tFile where test outcomes are written\n"
143 printf " \t(default: \$MBEDTLS_TEST_OUTCOME_FILE, none if empty)\n"
144 printf " --port \tTCP/UDP port (default: randomish 1xxxx)\n"
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]145 printf " --proxy-port\tTCP/UDP proxy port (default: randomish 2xxxx)\n"
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]146 printf " --seed \tInteger seed value to use for this test run\n"
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]147}
148
149get_options() {
150 while [ $# -gt 0 ]; do
151 case "$1" in
Manuel Pégourié-Gonnard417d46c2014-03-13 19:17:53 +0100[diff] [blame]152 -f|--filter)
153 shift; FILTER=$1
154 ;;
155 -e|--exclude)
156 shift; EXCLUDE=$1
157 ;;
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]158 -m|--memcheck)
159 MEMCHECK=1
160 ;;
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]161 -n|--number)
162 shift; RUN_TEST_NUMBER=$1
163 ;;
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]164 -s|--show-numbers)
165 SHOW_TEST_NUMBER=1
166 ;;
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]167 -p|--preserve-logs)
168 PRESERVE_LOGS=1
169 ;;
Yanray Wang56599812023-02-28 11:56:59 +0800[diff] [blame^]170 --outcome-file)
171 shift; MBEDTLS_TEST_OUTCOME_FILE=$1
172 ;;
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]173 --port)
174 shift; SRV_PORT=$1
175 ;;
176 --proxy-port)
177 shift; PXY_PORT=$1
178 ;;
Andres AGf04f54d2016-10-10 15:46:20 +0100[diff] [blame]179 --seed)
180 shift; SEED="$1"
181 ;;
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]182 -h|--help)
183 print_usage
184 exit 0
185 ;;
186 *)
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]187 echo "Unknown argument: '$1'"
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]188 print_usage
189 exit 1
190 ;;
191 esac
192 shift
193 done
194}
195
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]196# Read boolean configuration options from config.h for easy and quick
197# testing. Skip non-boolean options (with something other than spaces
198# and a comment after "#define SYMBOL"). The variable contains a
199# space-separated list of symbols.
Jerry Yucf080ce2021-12-10 18:45:51 +0800[diff] [blame]200CONFIGS_ENABLED=" $(echo `$P_QUERY -l` )"
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]201# Skip next test; use this macro to skip tests which are legitimate
202# in theory and expected to be re-introduced at some point, but
203# aren't expected to succeed at the moment due to problems outside
204# our control (such as bugs in other TLS implementations).
205skip_next_test() {
206 SKIP_NEXT="YES"
207}
208
Manuel Pégourié-Gonnard988209f2015-03-24 10:43:55 +0100[diff] [blame]209# skip next test if the flag is not enabled in config.h
210requires_config_enabled() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]211 case $CONFIGS_ENABLED in
Jerry Yu969c01a2021-12-10 20:29:02 +0800[diff] [blame]212 *" $1"[\ =]*) :;;
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]213 *) SKIP_NEXT="YES";;
214 esac
Manuel Pégourié-Gonnard988209f2015-03-24 10:43:55 +0100[diff] [blame]215}
216
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]217# skip next test if the flag is enabled in config.h
218requires_config_disabled() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]219 case $CONFIGS_ENABLED in
Jerry Yu969c01a2021-12-10 20:29:02 +0800[diff] [blame]220 *" $1"[\ =]*) SKIP_NEXT="YES";;
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]221 esac
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]222}
223
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]224get_config_value_or_default() {
Andres Amaya Garcia3169dc02018-10-16 21:29:07 +0100[diff] [blame]225 # This function uses the query_config command line option to query the
226 # required Mbed TLS compile time configuration from the ssl_server2
227 # program. The command will always return a success value if the
228 # configuration is defined and the value will be printed to stdout.
229 #
230 # Note that if the configuration is not defined or is defined to nothing,
231 # the output of this function will be an empty string.
232 ${P_SRV} "query_config=${1}"
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]233}
234
235requires_config_value_at_least() {
Andres Amaya Garcia3169dc02018-10-16 21:29:07 +0100[diff] [blame]236 VAL="$( get_config_value_or_default "$1" )"
237 if [ -z "$VAL" ]; then
238 # Should never happen
239 echo "Mbed TLS configuration $1 is not defined"
240 exit 1
241 elif [ "$VAL" -lt "$2" ]; then
Hanno Becker5cd017f2018-08-24 14:40:12 +0100[diff] [blame]242 SKIP_NEXT="YES"
243 fi
244}
245
246requires_config_value_at_most() {
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]247 VAL=$( get_config_value_or_default "$1" )
Andres Amaya Garcia3169dc02018-10-16 21:29:07 +0100[diff] [blame]248 if [ -z "$VAL" ]; then
249 # Should never happen
250 echo "Mbed TLS configuration $1 is not defined"
251 exit 1
252 elif [ "$VAL" -gt "$2" ]; then
Hanno Becker5cd017f2018-08-24 14:40:12 +0100[diff] [blame]253 SKIP_NEXT="YES"
254 fi
255}
256
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]257requires_config_value_equals() {
258 VAL=$( get_config_value_or_default "$1" )
259 if [ -z "$VAL" ]; then
260 # Should never happen
261 echo "Mbed TLS configuration $1 is not defined"
262 exit 1
263 elif [ "$VAL" -ne "$2" ]; then
264 SKIP_NEXT="YES"
265 fi
266}
267
Gilles Peskine4b137d12022-04-08 19:33:07 +0200[diff] [blame]268# Require Mbed TLS to support the given protocol version.
269#
270# Inputs:
271# * $1: protocol version in mbedtls syntax (argument to force_version=)
272requires_protocol_version() {
273 # Support for DTLS is detected separately in detect_dtls().
274 case "$1" in
275 ssl3) requires_config_enabled MBEDTLS_SSL_PROTO_SSL3;;
276 tls1) requires_config_enabled MBEDTLS_SSL_PROTO_TLS1;;
277 tls1_1|dtls1) requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1;;
278 tls12|dtls12) requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2;;
279 *) echo "Unknown required protocol version: $1"; exit 1;;
280 esac
281}
282
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]283# Space-separated list of ciphersuites supported by this build of
284# Mbed TLS.
285P_CIPHERSUITES=" $($P_CLI --help 2>/dev/null |
286 grep TLS- |
287 tr -s ' \n' ' ')"
Hanno Becker9d76d562018-11-16 17:27:29 +0000[diff] [blame]288requires_ciphersuite_enabled() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]289 case $P_CIPHERSUITES in
290 *" $1 "*) :;;
291 *) SKIP_NEXT="YES";;
292 esac
Hanno Becker9d76d562018-11-16 17:27:29 +0000[diff] [blame]293}
294
Gilles Peskine511fdf42022-04-08 19:26:26 +0200[diff] [blame]295# detect_required_features CMD [RUN_TEST_OPTION...]
296# If CMD (call to a TLS client or server program) requires certain features,
297# arrange to only run the following test case if those features are enabled.
298detect_required_features() {
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]299 case "$1" in
Gilles Peskine4b137d12022-04-08 19:33:07 +0200[diff] [blame]300 *\ force_version=*)
301 tmp="${1##*\ force_version=}"
302 tmp="${tmp%%[!-0-9A-Z_a-z]*}"
303 requires_protocol_version "$tmp";;
304 esac
305
306 case "$1" in
Gilles Peskine511fdf42022-04-08 19:26:26 +0200[diff] [blame]307 *\ force_ciphersuite=*)
308 tmp="${1##*\ force_ciphersuite=}"
309 tmp="${tmp%%[!-0-9A-Z_a-z]*}"
310 case "$*" in
311 *"-s SSL - The server has no ciphersuites in common"*)
312 # This test case expects a ciphersuite mismatch, so it
313 # doesn't actually require the ciphersuite to be enabled.
314 :;;
315 *) requires_ciphersuite_enabled "$tmp";;
316 esac;;
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]317 esac
318
Gilles Peskine3c985f62022-04-08 19:29:27 +0200[diff] [blame]319 case " $1 " in
320 *[-_\ =]tickets=[^0]*)
321 requires_config_enabled MBEDTLS_SSL_TICKET_C;;
322 esac
323 case " $1 " in
324 *[-_\ =]alpn=*)
325 requires_config_enabled MBEDTLS_SSL_ALPN;;
326 esac
327
Gilles Peskinebba3b4c2022-04-09 00:08:47 +0200[diff] [blame]328 case " $1 " in
Gilles Peskine6e257b02022-04-13 14:19:57 +0200[diff] [blame]329 *\ badmac_limit=*)
330 requires_config_enabled MBEDTLS_SSL_DTLS_BADMAC_LIMIT;;
331 esac
332
333 case " $1 " in
Gilles Peskinebba3b4c2022-04-09 00:08:47 +0200[diff] [blame]334 *\ fallback=1\ *|*\ -fallback_scsv\ *)
335 requires_config_enabled MBEDTLS_SSL_FALLBACK_SCSV;;
336 esac
337
Gilles Peskine511fdf42022-04-08 19:26:26 +0200[diff] [blame]338 unset tmp
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]339}
340
Gilles Peskine22cc6492022-03-14 18:21:24 +0100[diff] [blame]341requires_certificate_authentication () {
342 if [ "$PSK_ONLY" = "YES" ]; then
343 SKIP_NEXT="YES"
344 fi
345}
346
Gilles Peskine89d892f2022-02-25 19:52:52 +0100[diff] [blame]347adapt_cmd_for_psk () {
348 case "$2" in
349 *openssl*) s='-psk abc123 -nocert';;
350 *gnutls-*) s='--pskkey=abc123';;
351 *) s='psk=abc123';;
352 esac
353 eval $1='"$2 $s"'
354 unset s
355}
356
357# maybe_adapt_for_psk [RUN_TEST_OPTION...]
358# If running in a PSK-only build, maybe adapt the test to use a pre-shared key.
359#
360# If not running in a PSK-only build, do nothing.
361# If the test looks like it doesn't use a pre-shared key but can run with a
362# pre-shared key, pass a pre-shared key. If the test looks like it can't run
363# with a pre-shared key, skip it. If the test looks like it's already using
364# a pre-shared key, do nothing.
365#
Gilles Peskined5b1a302022-04-05 22:00:17 +0200[diff] [blame]366# This code does not consider builds with ECDHE-PSK or RSA-PSK.
Gilles Peskine89d892f2022-02-25 19:52:52 +0100[diff] [blame]367#
368# Inputs:
369# * $CLI_CMD, $SRV_CMD, $PXY_CMD: client/server/proxy commands.
370# * $PSK_ONLY: YES if running in a PSK-only build (no asymmetric key exchanges).
371# * "$@": options passed to run_test.
372#
373# Outputs:
374# * $CLI_CMD, $SRV_CMD: may be modified to add PSK-relevant arguments.
375# * $SKIP_NEXT: set to YES if the test can't run with PSK.
376maybe_adapt_for_psk() {
377 if [ "$PSK_ONLY" != "YES" ]; then
378 return
379 fi
380 if [ "$SKIP_NEXT" = "YES" ]; then
381 return
382 fi
383 case "$CLI_CMD $SRV_CMD" in
384 *[-_\ =]psk*|*[-_\ =]PSK*)
385 return;;
386 *force_ciphersuite*)
387 # The test case forces a non-PSK cipher suite. In some cases, a
388 # PSK cipher suite could be substituted, but we're not ready for
389 # that yet.
390 SKIP_NEXT="YES"
391 return;;
392 *\ auth_mode=*|*[-_\ =]crt[_=]*)
393 # The test case involves certificates. PSK won't do.
394 SKIP_NEXT="YES"
395 return;;
396 esac
397 adapt_cmd_for_psk CLI_CMD "$CLI_CMD"
398 adapt_cmd_for_psk SRV_CMD "$SRV_CMD"
399}
400
401case " $CONFIGS_ENABLED " in
402 *\ MBEDTLS_KEY_EXCHANGE_[^P]*) PSK_ONLY="NO";;
403 *\ MBEDTLS_KEY_EXCHANGE_P[^S]*) PSK_ONLY="NO";;
404 *\ MBEDTLS_KEY_EXCHANGE_PS[^K]*) PSK_ONLY="NO";;
405 *\ MBEDTLS_KEY_EXCHANGE_PSK[^_]*) PSK_ONLY="NO";;
406 *\ MBEDTLS_KEY_EXCHANGE_PSK_ENABLED\ *) PSK_ONLY="YES";;
407 *) PSK_ONLY="NO";;
408esac
409
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]410# skip next test if OpenSSL doesn't support FALLBACK_SCSV
411requires_openssl_with_fallback_scsv() {
412 if [ -z "${OPENSSL_HAS_FBSCSV:-}" ]; then
Manuel Pégourié-Gonnard89d40272022-12-19 11:42:12 +0100[diff] [blame]413 if $OPENSSL s_client -help 2>&1 | grep fallback_scsv >/dev/null
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]414 then
415 OPENSSL_HAS_FBSCSV="YES"
416 else
417 OPENSSL_HAS_FBSCSV="NO"
418 fi
419 fi
420 if [ "$OPENSSL_HAS_FBSCSV" = "NO" ]; then
421 SKIP_NEXT="YES"
422 fi
423}
424
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]425# skip next test if either IN_CONTENT_LEN or MAX_CONTENT_LEN are below a value
426requires_max_content_len() {
427 requires_config_value_at_least "MBEDTLS_SSL_IN_CONTENT_LEN" $1
428 requires_config_value_at_least "MBEDTLS_SSL_OUT_CONTENT_LEN" $1
429}
430
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]431# skip next test if GnuTLS isn't available
432requires_gnutls() {
433 if [ -z "${GNUTLS_AVAILABLE:-}" ]; then
Manuel Pégourié-Gonnard03db6b02015-06-26 15:45:30 +0200[diff] [blame]434 if ( which "$GNUTLS_CLI" && which "$GNUTLS_SERV" ) >/dev/null 2>&1; then
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]435 GNUTLS_AVAILABLE="YES"
436 else
437 GNUTLS_AVAILABLE="NO"
438 fi
439 fi
440 if [ "$GNUTLS_AVAILABLE" = "NO" ]; then
441 SKIP_NEXT="YES"
442 fi
443}
444
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]445# skip next test if GnuTLS-next isn't available
446requires_gnutls_next() {
447 if [ -z "${GNUTLS_NEXT_AVAILABLE:-}" ]; then
448 if ( which "${GNUTLS_NEXT_CLI:-}" && which "${GNUTLS_NEXT_SERV:-}" ) >/dev/null 2>&1; then
449 GNUTLS_NEXT_AVAILABLE="YES"
450 else
451 GNUTLS_NEXT_AVAILABLE="NO"
452 fi
453 fi
454 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
455 SKIP_NEXT="YES"
456 fi
457}
458
459# skip next test if OpenSSL-legacy isn't available
460requires_openssl_legacy() {
461 if [ -z "${OPENSSL_LEGACY_AVAILABLE:-}" ]; then
462 if which "${OPENSSL_LEGACY:-}" >/dev/null 2>&1; then
463 OPENSSL_LEGACY_AVAILABLE="YES"
464 else
465 OPENSSL_LEGACY_AVAILABLE="NO"
466 fi
467 fi
468 if [ "$OPENSSL_LEGACY_AVAILABLE" = "NO" ]; then
469 SKIP_NEXT="YES"
470 fi
471}
472
Paul Elliott633a74e2021-10-13 18:31:07 +0100[diff] [blame]473requires_openssl_next() {
474 if [ -z "${OPENSSL_NEXT_AVAILABLE:-}" ]; then
475 if which "${OPENSSL_NEXT:-}" >/dev/null 2>&1; then
476 OPENSSL_NEXT_AVAILABLE="YES"
477 else
478 OPENSSL_NEXT_AVAILABLE="NO"
479 fi
480 fi
481 if [ "$OPENSSL_NEXT_AVAILABLE" = "NO" ]; then
482 SKIP_NEXT="YES"
483 fi
484}
485
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]486# skip next test if IPv6 isn't available on this host
487requires_ipv6() {
488 if [ -z "${HAS_IPV6:-}" ]; then
489 $P_SRV server_addr='::1' > $SRV_OUT 2>&1 &
490 SRV_PID=$!
491 sleep 1
492 kill $SRV_PID >/dev/null 2>&1
493 if grep "NET - Binding of the socket failed" $SRV_OUT >/dev/null; then
494 HAS_IPV6="NO"
495 else
496 HAS_IPV6="YES"
497 fi
498 rm -r $SRV_OUT
499 fi
500
501 if [ "$HAS_IPV6" = "NO" ]; then
502 SKIP_NEXT="YES"
503 fi
504}
505
Andrzej Kurekb4593462018-10-11 08:43:30 -0400[diff] [blame]506# skip next test if it's i686 or uname is not available
507requires_not_i686() {
508 if [ -z "${IS_I686:-}" ]; then
509 IS_I686="YES"
510 if which "uname" >/dev/null 2>&1; then
511 if [ -z "$(uname -a | grep i686)" ]; then
512 IS_I686="NO"
513 fi
514 fi
515 fi
516 if [ "$IS_I686" = "YES" ]; then
517 SKIP_NEXT="YES"
518 fi
519}
520
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]521# Calculate the input & output maximum content lengths set in the config
Yuto Takanoab9e43332021-06-22 07:16:40 +0100[diff] [blame]522MAX_CONTENT_LEN=$( get_config_value_or_default "MBEDTLS_SSL_MAX_CONTENT_LEN" )
523MAX_IN_LEN=$( get_config_value_or_default "MBEDTLS_SSL_IN_CONTENT_LEN" )
524MAX_OUT_LEN=$( get_config_value_or_default "MBEDTLS_SSL_OUT_CONTENT_LEN" )
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]525
Yuto Takano18ddccc2021-06-21 19:43:33 +0100[diff] [blame]526# Calculate the maximum content length that fits both
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]527if [ "$MAX_IN_LEN" -lt "$MAX_CONTENT_LEN" ]; then
528 MAX_CONTENT_LEN="$MAX_IN_LEN"
529fi
530if [ "$MAX_OUT_LEN" -lt "$MAX_CONTENT_LEN" ]; then
531 MAX_CONTENT_LEN="$MAX_OUT_LEN"
532fi
533
534# skip the next test if the SSL output buffer is less than 16KB
535requires_full_size_output_buffer() {
536 if [ "$MAX_OUT_LEN" -ne 16384 ]; then
537 SKIP_NEXT="YES"
538 fi
539}
540
Manuel Pégourié-Gonnard76fe9e42014-09-24 15:17:31 +0200[diff] [blame]541# skip the next test if valgrind is in use
542not_with_valgrind() {
543 if [ "$MEMCHECK" -gt 0 ]; then
544 SKIP_NEXT="YES"
545 fi
546}
547
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]548# skip the next test if valgrind is NOT in use
549only_with_valgrind() {
550 if [ "$MEMCHECK" -eq 0 ]; then
551 SKIP_NEXT="YES"
552 fi
553}
554
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]555# multiply the client timeout delay by the given factor for the next test
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]556client_needs_more_time() {
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]557 CLI_DELAY_FACTOR=$1
558}
559
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]560# wait for the given seconds after the client finished in the next test
561server_needs_more_time() {
562 SRV_DELAY_SECONDS=$1
563}
564
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]565# print_name <name>
566print_name() {
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]567 TESTS=$(( $TESTS + 1 ))
568 LINE=""
569
570 if [ "$SHOW_TEST_NUMBER" -gt 0 ]; then
571 LINE="$TESTS "
572 fi
573
574 LINE="$LINE$1"
Gilles Peskine231befa2020-08-26 20:05:11 +0200[diff] [blame]575 printf "%s " "$LINE"
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]576 LEN=$(( 72 - `echo "$LINE" | wc -c` ))
Manuel Pégourié-Gonnardf46f1282014-12-11 11:51:28 +0100[diff] [blame]577 for i in `seq 1 $LEN`; do printf '.'; done
578 printf ' '
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]579
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]580}
581
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]582# record_outcome <outcome> [<failure-reason>]
583# The test name must be in $NAME.
584record_outcome() {
585 echo "$1"
586 if [ -n "$MBEDTLS_TEST_OUTCOME_FILE" ]; then
587 printf '%s;%s;%s;%s;%s;%s\n' \
588 "$MBEDTLS_TEST_PLATFORM" "$MBEDTLS_TEST_CONFIGURATION" \
589 "ssl-opt" "$NAME" \
590 "$1" "${2-}" \
591 >>"$MBEDTLS_TEST_OUTCOME_FILE"
592 fi
593}
594
Gilles Peskineaa1d6ad2021-10-20 14:17:02 +0200[diff] [blame]595# True if the presence of the given pattern in a log definitely indicates
596# that the test has failed. False if the presence is inconclusive.
597#
598# Inputs:
599# * $1: pattern found in the logs
600# * $TIMES_LEFT: >0 if retrying is an option
601#
602# Outputs:
603# * $outcome: set to a retry reason if the pattern is inconclusive,
604# unchanged otherwise.
605# * Return value: 1 if the pattern is inconclusive,
606# 0 if the failure is definitive.
607log_pattern_presence_is_conclusive() {
608 # If we've run out of attempts, then don't retry no matter what.
609 if [ $TIMES_LEFT -eq 0 ]; then
610 return 0
611 fi
612 case $1 in
613 "resend")
614 # An undesired resend may have been caused by the OS dropping or
615 # delaying a packet at an inopportune time.
616 outcome="RETRY(resend)"
617 return 1;;
618 esac
619}
620
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]621# fail <message>
622fail() {
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]623 record_outcome "FAIL" "$1"
Manuel Pégourié-Gonnard3eec6042014-02-27 15:37:24 +0100[diff] [blame]624 echo " ! $1"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]625
Manuel Pégourié-Gonnardc2b00922014-08-31 16:46:04 +0200[diff] [blame]626 mv $SRV_OUT o-srv-${TESTS}.log
627 mv $CLI_OUT o-cli-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]628 if [ -n "$PXY_CMD" ]; then
629 mv $PXY_OUT o-pxy-${TESTS}.log
630 fi
631 echo " ! outputs saved to o-XXX-${TESTS}.log"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]632
Manuel Pégourié-Gonnard3f3302f2020-06-08 11:49:05 +0200[diff] [blame]633 if [ "${LOG_FAILURE_ON_STDOUT:-0}" != 0 ]; then
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]634 echo " ! server output:"
635 cat o-srv-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]636 echo " ! ========================================================"
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]637 echo " ! client output:"
638 cat o-cli-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]639 if [ -n "$PXY_CMD" ]; then
640 echo " ! ========================================================"
641 echo " ! proxy output:"
642 cat o-pxy-${TESTS}.log
643 fi
644 echo ""
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]645 fi
646
Manuel Pégourié-Gonnard72e51ee2014-08-31 10:22:11 +0200[diff] [blame]647 FAILS=$(( $FAILS + 1 ))
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]648}
649
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]650# is_polar <cmd_line>
651is_polar() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]652 case "$1" in
653 *ssl_client2*) true;;
654 *ssl_server2*) true;;
655 *) false;;
656 esac
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]657}
658
Manuel Pégourié-Gonnardfa60f122014-09-26 16:07:29 +0200[diff] [blame]659# openssl s_server doesn't have -www with DTLS
660check_osrv_dtls() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]661 case "$SRV_CMD" in
662 *s_server*-dtls*)
663 NEEDS_INPUT=1
664 SRV_CMD="$( echo $SRV_CMD | sed s/-www// )";;
665 *) NEEDS_INPUT=0;;
666 esac
Manuel Pégourié-Gonnardfa60f122014-09-26 16:07:29 +0200[diff] [blame]667}
668
669# provide input to commands that need it
670provide_input() {
671 if [ $NEEDS_INPUT -eq 0 ]; then
672 return
673 fi
674
675 while true; do
676 echo "HTTP/1.0 200 OK"
677 sleep 1
678 done
679}
680
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]681# has_mem_err <log_file_name>
682has_mem_err() {
683 if ( grep -F 'All heap blocks were freed -- no leaks are possible' "$1" &&
684 grep -F 'ERROR SUMMARY: 0 errors from 0 contexts' "$1" ) > /dev/null
685 then
686 return 1 # false: does not have errors
687 else
688 return 0 # true: has errors
689 fi
690}
691
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]692# Wait for process $2 named $3 to be listening on port $1. Print error to $4.
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]693if type lsof >/dev/null 2>/dev/null; then
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]694 wait_app_start() {
Paul Elliottce777382021-10-20 15:59:33 +0100[diff] [blame]695 newline='
696'
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]697 START_TIME=$(date +%s)
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]698 if [ "$DTLS" -eq 1 ]; then
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]699 proto=UDP
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]700 else
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]701 proto=TCP
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]702 fi
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]703 # Make a tight loop, server normally takes less than 1s to start.
Paul Elliott6cd97ce2021-10-19 17:56:39 +0100[diff] [blame]704 while true; do
Gilles Peskine36019d52022-04-15 22:53:18 +0200[diff] [blame]705 SERVER_PIDS=$(lsof -a -n -b -i "$proto:$1" -t)
Paul Elliottce777382021-10-20 15:59:33 +0100[diff] [blame]706 # When we use a proxy, it will be listening on the same port we
707 # are checking for as well as the server and lsof will list both.
Paul Elliottce777382021-10-20 15:59:33 +0100[diff] [blame]708 case ${newline}${SERVER_PIDS}${newline} in
Gilles Peskine36019d52022-04-15 22:53:18 +0200[diff] [blame]709 *${newline}${2}${newline}*) break;;
Paul Elliottce777382021-10-20 15:59:33 +0100[diff] [blame]710 esac
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]711 if [ $(( $(date +%s) - $START_TIME )) -gt $DOG_DELAY ]; then
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]712 echo "$3 START TIMEOUT"
713 echo "$3 START TIMEOUT" >> $4
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]714 break
715 fi
716 # Linux and *BSD support decimal arguments to sleep. On other
717 # OSes this may be a tight loop.
718 sleep 0.1 2>/dev/null || true
719 done
720 }
721else
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]722 echo "Warning: lsof not available, wait_app_start = sleep"
723 wait_app_start() {
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]724 sleep "$START_DELAY"
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]725 }
726fi
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]727
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]728# Wait for server process $2 to be listening on port $1.
729wait_server_start() {
730 wait_app_start $1 $2 "SERVER" $SRV_OUT
731}
732
733# Wait for proxy process $2 to be listening on port $1.
734wait_proxy_start() {
735 wait_app_start $1 $2 "PROXY" $PXY_OUT
736}
737
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]738# Given the client or server debug output, parse the unix timestamp that is
Andres Amaya Garcia3b1bdff2017-09-14 12:41:29 +0100[diff] [blame]739# included in the first 4 bytes of the random bytes and check that it's within
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]740# acceptable bounds
741check_server_hello_time() {
742 # Extract the time from the debug (lvl 3) output of the client
Andres Amaya Garcia67d8da52017-09-15 15:49:24 +0100[diff] [blame]743 SERVER_HELLO_TIME="$(sed -n 's/.*server hello, current time: //p' < "$1")"
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]744 # Get the Unix timestamp for now
745 CUR_TIME=$(date +'%s')
746 THRESHOLD_IN_SECS=300
747
748 # Check if the ServerHello time was printed
749 if [ -z "$SERVER_HELLO_TIME" ]; then
750 return 1
751 fi
752
753 # Check the time in ServerHello is within acceptable bounds
754 if [ $SERVER_HELLO_TIME -lt $(( $CUR_TIME - $THRESHOLD_IN_SECS )) ]; then
755 # The time in ServerHello is at least 5 minutes before now
756 return 1
757 elif [ $SERVER_HELLO_TIME -gt $(( $CUR_TIME + $THRESHOLD_IN_SECS )) ]; then
Andres Amaya Garcia3b1bdff2017-09-14 12:41:29 +0100[diff] [blame]758 # The time in ServerHello is at least 5 minutes later than now
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]759 return 1
760 else
761 return 0
762 fi
763}
764
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]765# Get handshake memory usage from server or client output and put it into the variable specified by the first argument
766handshake_memory_get() {
767 OUTPUT_VARIABLE="$1"
768 OUTPUT_FILE="$2"
769
770 # Get memory usage from a pattern like "Heap memory usage after handshake: 23112 bytes. Peak memory usage was 33112"
771 MEM_USAGE=$(sed -n 's/.*Heap memory usage after handshake: //p' < "$OUTPUT_FILE" | grep -o "[0-9]*" | head -1)
772
773 # Check if memory usage was read
774 if [ -z "$MEM_USAGE" ]; then
775 echo "Error: Can not read the value of handshake memory usage"
776 return 1
777 else
778 eval "$OUTPUT_VARIABLE=$MEM_USAGE"
779 return 0
780 fi
781}
782
783# Get handshake memory usage from server or client output and check if this value
784# is not higher than the maximum given by the first argument
785handshake_memory_check() {
786 MAX_MEMORY="$1"
787 OUTPUT_FILE="$2"
788
789 # Get memory usage
790 if ! handshake_memory_get "MEMORY_USAGE" "$OUTPUT_FILE"; then
791 return 1
792 fi
793
794 # Check if memory usage is below max value
795 if [ "$MEMORY_USAGE" -gt "$MAX_MEMORY" ]; then
796 echo "\nFailed: Handshake memory usage was $MEMORY_USAGE bytes," \
797 "but should be below $MAX_MEMORY bytes"
798 return 1
799 else
800 return 0
801 fi
802}
803
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]804# wait for client to terminate and set CLI_EXIT
805# must be called right after starting the client
806wait_client_done() {
807 CLI_PID=$!
808
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]809 CLI_DELAY=$(( $DOG_DELAY * $CLI_DELAY_FACTOR ))
810 CLI_DELAY_FACTOR=1
811
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]812 ( sleep $CLI_DELAY; echo "===CLIENT_TIMEOUT===" >> $CLI_OUT; kill $CLI_PID ) &
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]813 DOG_PID=$!
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]814
815 wait $CLI_PID
816 CLI_EXIT=$?
817
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]818 kill $DOG_PID >/dev/null 2>&1
819 wait $DOG_PID
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]820
821 echo "EXIT: $CLI_EXIT" >> $CLI_OUT
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]822
823 sleep $SRV_DELAY_SECONDS
824 SRV_DELAY_SECONDS=0
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]825}
826
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]827# check if the given command uses dtls and sets global variable DTLS
828detect_dtls() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]829 case "$1" in
Paul Elliott405fccc2021-10-12 16:02:55 +0100[diff] [blame]830 *dtls=1*|*-dtls*|*-u*) DTLS=1;;
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]831 *) DTLS=0;;
832 esac
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]833}
834
Dave Rodgman0279c2f2021-02-10 12:45:41 +0000[diff] [blame]835# check if the given command uses gnutls and sets global variable CMD_IS_GNUTLS
836is_gnutls() {
837 case "$1" in
838 *gnutls-cli*)
839 CMD_IS_GNUTLS=1
840 ;;
841 *gnutls-serv*)
842 CMD_IS_GNUTLS=1
843 ;;
844 *)
845 CMD_IS_GNUTLS=0
846 ;;
847 esac
848}
849
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]850# Determine what calc_verify trace is to be expected, if any.
851#
852# calc_verify is only called for two things: to calculate the
853# extended master secret, and to process client authentication.
854#
855# Warning: the current implementation assumes that extended_ms is not
856# disabled on the client or on the server.
857#
858# Inputs:
Gilles Peskinef2e1f472022-04-06 22:23:45 +0200[diff] [blame]859# * $1: the value of the server auth_mode parameter.
860# 'required' if client authentication is expected,
861# 'none' or absent if not.
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]862# * $CONFIGS_ENABLED
863#
864# Outputs:
865# * $maybe_calc_verify: set to a trace expected in the debug logs
866set_maybe_calc_verify() {
867 maybe_calc_verify=
868 case $CONFIGS_ENABLED in
869 *\ MBEDTLS_SSL_EXTENDED_MASTER_SECRET\ *) :;;
870 *)
871 case ${1-} in
Gilles Peskinef2e1f472022-04-06 22:23:45 +0200[diff] [blame]872 ''|none) return;;
873 required) :;;
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]874 *) echo "Bad parameter 1 to set_maybe_calc_verify: $1"; exit 1;;
875 esac
876 esac
877 case $CONFIGS_ENABLED in
878 *\ MBEDTLS_USE_PSA_CRYPTO\ *) maybe_calc_verify="PSA calc verify";;
879 *) maybe_calc_verify="<= calc verify";;
880 esac
881}
882
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]883# Compare file content
884# Usage: find_in_both pattern file1 file2
885# extract from file1 the first line matching the pattern
886# check in file2 that the same line can be found
887find_in_both() {
888 srv_pattern=$(grep -m 1 "$1" "$2");
889 if [ -z "$srv_pattern" ]; then
890 return 1;
891 fi
892
893 if grep "$srv_pattern" $3 >/dev/null; then :
Johan Pascal10403152020-10-09 20:43:51 +0200[diff] [blame]894 return 0;
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]895 else
896 return 1;
897 fi
898}
899
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]900# Analyze the commands that will be used in a test.
901#
902# Analyze and possibly instrument $PXY_CMD, $CLI_CMD, $SRV_CMD to pass
903# extra arguments or go through wrappers.
Gilles Peskined5b1a302022-04-05 22:00:17 +0200[diff] [blame]904#
905# Inputs:
906# * $@: supplemental options to run_test() (after the mandatory arguments).
907# * $CLI_CMD, $PXY_CMD, $SRV_CMD: the client, proxy and server commands.
908# * $DTLS: 1 if DTLS, otherwise 0.
909#
910# Outputs:
911# * $CLI_CMD, $PXY_CMD, $SRV_CMD: may be tweaked.
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]912analyze_test_commands() {
Manuel Pégourié-Gonnardf4557862020-06-08 11:40:06 +0200[diff] [blame]913 # if the test uses DTLS but no custom proxy, add a simple proxy
914 # as it provides timing info that's useful to debug failures
Manuel Pégourié-Gonnard70fce982020-06-25 09:54:46 +0200[diff] [blame]915 if [ -z "$PXY_CMD" ] && [ "$DTLS" -eq 1 ]; then
Manuel Pégourié-Gonnardf4557862020-06-08 11:40:06 +0200[diff] [blame]916 PXY_CMD="$P_PXY"
Manuel Pégourié-Gonnard8779e9a2020-07-16 10:19:32 +0200[diff] [blame]917 case " $SRV_CMD " in
918 *' server_addr=::1 '*)
919 PXY_CMD="$PXY_CMD server_addr=::1 listen_addr=::1";;
920 esac
Manuel Pégourié-Gonnardf4557862020-06-08 11:40:06 +0200[diff] [blame]921 fi
922
Dave Rodgman0279c2f2021-02-10 12:45:41 +0000[diff] [blame]923 # update CMD_IS_GNUTLS variable
924 is_gnutls "$SRV_CMD"
925
926 # if the server uses gnutls but doesn't set priority, explicitly
927 # set the default priority
928 if [ "$CMD_IS_GNUTLS" -eq 1 ]; then
929 case "$SRV_CMD" in
930 *--priority*) :;;
931 *) SRV_CMD="$SRV_CMD --priority=NORMAL";;
932 esac
933 fi
934
935 # update CMD_IS_GNUTLS variable
936 is_gnutls "$CLI_CMD"
937
938 # if the client uses gnutls but doesn't set priority, explicitly
939 # set the default priority
940 if [ "$CMD_IS_GNUTLS" -eq 1 ]; then
941 case "$CLI_CMD" in
942 *--priority*) :;;
943 *) CLI_CMD="$CLI_CMD --priority=NORMAL";;
944 esac
945 fi
946
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]947 # fix client port
948 if [ -n "$PXY_CMD" ]; then
949 CLI_CMD=$( echo "$CLI_CMD" | sed s/+SRV_PORT/$PXY_PORT/g )
950 else
951 CLI_CMD=$( echo "$CLI_CMD" | sed s/+SRV_PORT/$SRV_PORT/g )
952 fi
953
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]954 # prepend valgrind to our commands if active
955 if [ "$MEMCHECK" -gt 0 ]; then
956 if is_polar "$SRV_CMD"; then
957 SRV_CMD="valgrind --leak-check=full $SRV_CMD"
958 fi
959 if is_polar "$CLI_CMD"; then
960 CLI_CMD="valgrind --leak-check=full $CLI_CMD"
961 fi
962 fi
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]963}
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]964
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]965# Check for failure conditions after a test case.
966#
967# Inputs from run_test:
968# * positional parameters: test options (see run_test documentation)
969# * $CLI_EXIT: client return code
970# * $CLI_EXPECT: expected client return code
971# * $SRV_RET: server return code
972# * $CLI_OUT, $SRV_OUT, $PXY_OUT: files containing client/server/proxy logs
Gilles Peskinea28fd412021-10-19 17:23:25 +0200[diff] [blame]973# * $TIMES_LEFT: if nonzero, a RETRY outcome is allowed
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]974#
975# Outputs:
Gilles Peskine2d3c9f82021-10-19 18:00:10 +0200[diff] [blame]976# * $outcome: one of PASS/RETRY*/FAIL
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]977check_test_failure() {
Gilles Peskinea28fd412021-10-19 17:23:25 +0200[diff] [blame]978 outcome=FAIL
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]979
Gilles Peskinea28fd412021-10-19 17:23:25 +0200[diff] [blame]980 if [ $TIMES_LEFT -gt 0 ] &&
981 grep '===CLIENT_TIMEOUT===' $CLI_OUT >/dev/null
982 then
Gilles Peskine2d3c9f82021-10-19 18:00:10 +0200[diff] [blame]983 outcome="RETRY(client-timeout)"
Gilles Peskinea28fd412021-10-19 17:23:25 +0200[diff] [blame]984 return
985 fi
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]986
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]987 # check if the client and server went at least to the handshake stage
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]988 # (useful to avoid tests with only negative assertions and non-zero
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]989 # expected client exit to incorrectly succeed in case of catastrophic
990 # failure)
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]991 if is_polar "$SRV_CMD"; then
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]992 if grep "Performing the SSL/TLS handshake" $SRV_OUT >/dev/null; then :;
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]993 else
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]994 fail "server or client failed to reach handshake stage"
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]995 return
996 fi
997 fi
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]998 if is_polar "$CLI_CMD"; then
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]999 if grep "Performing the SSL/TLS handshake" $CLI_OUT >/dev/null; then :;
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1000 else
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]1001 fail "server or client failed to reach handshake stage"
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1002 return
1003 fi
1004 fi
1005
Gilles Peskineaaf866e2021-02-09 21:01:33 +0100[diff] [blame]1006 # Check server exit code (only for Mbed TLS: GnuTLS and OpenSSL don't
1007 # exit with status 0 when interrupted by a signal, and we don't really
1008 # care anyway), in case e.g. the server reports a memory leak.
1009 if [ $SRV_RET != 0 ] && is_polar "$SRV_CMD"; then
Gilles Peskine7f919de2021-02-02 23:29:03 +0100[diff] [blame]1010 fail "Server exited with status $SRV_RET"
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1011 return
1012 fi
1013
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1014 # check client exit code
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]1015 if [ \( "$CLI_EXPECT" = 0 -a "$CLI_EXIT" != 0 \) -o \
1016 \( "$CLI_EXPECT" != 0 -a "$CLI_EXIT" = 0 \) ]
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1017 then
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1018 fail "bad client exit code (expected $CLI_EXPECT, got $CLI_EXIT)"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1019 return
1020 fi
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1021
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1022 # check other assertions
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]1023 # lines beginning with == are added by valgrind, ignore them
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1024 # lines with 'Serious error when reading debug info', are valgrind issues as well
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1025 while [ $# -gt 0 ]
1026 do
1027 case $1 in
1028 "-s")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1029 if grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then :; else
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1030 fail "pattern '$2' MUST be present in the Server output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1031 return
1032 fi
1033 ;;
1034
1035 "-c")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1036 if grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then :; else
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1037 fail "pattern '$2' MUST be present in the Client output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1038 return
1039 fi
1040 ;;
1041
1042 "-S")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1043 if grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then
Gilles Peskineaa1d6ad2021-10-20 14:17:02 +0200[diff] [blame]1044 if log_pattern_presence_is_conclusive "$2"; then
Gilles Peskine2d3c9f82021-10-19 18:00:10 +0200[diff] [blame]1045 fail "pattern '$2' MUST NOT be present in the Server output"
1046 fi
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1047 return
1048 fi
1049 ;;
1050
1051 "-C")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1052 if grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then
Gilles Peskineaa1d6ad2021-10-20 14:17:02 +0200[diff] [blame]1053 if log_pattern_presence_is_conclusive "$2"; then
Gilles Peskine2d3c9f82021-10-19 18:00:10 +0200[diff] [blame]1054 fail "pattern '$2' MUST NOT be present in the Client output"
1055 fi
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1056 return
1057 fi
1058 ;;
1059
1060 # The filtering in the following two options (-u and -U) do the following
1061 # - ignore valgrind output
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]1062 # - filter out everything but lines right after the pattern occurrences
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1063 # - keep one of each non-unique line
1064 # - count how many lines remain
1065 # A line with '--' will remain in the result from previous outputs, so the number of lines in the result will be 1
1066 # if there were no duplicates.
1067 "-U")
1068 if [ $(grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep -A1 "$2" | grep -v "$2" | sort | uniq -d | wc -l) -gt 1 ]; then
1069 fail "lines following pattern '$2' must be unique in Server output"
1070 return
1071 fi
1072 ;;
1073
1074 "-u")
1075 if [ $(grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep -A1 "$2" | grep -v "$2" | sort | uniq -d | wc -l) -gt 1 ]; then
1076 fail "lines following pattern '$2' must be unique in Client output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1077 return
1078 fi
1079 ;;
Andres Amaya Garcia93993de2017-09-06 15:38:07 +0100[diff] [blame]1080 "-F")
1081 if ! $2 "$SRV_OUT"; then
1082 fail "function call to '$2' failed on Server output"
1083 return
1084 fi
1085 ;;
1086 "-f")
1087 if ! $2 "$CLI_OUT"; then
1088 fail "function call to '$2' failed on Client output"
1089 return
1090 fi
1091 ;;
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]1092 "-g")
1093 if ! eval "$2 '$SRV_OUT' '$CLI_OUT'"; then
1094 fail "function call to '$2' failed on Server and Client output"
1095 return
1096 fi
1097 ;;
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1098
1099 *)
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]1100 echo "Unknown test: $1" >&2
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1101 exit 1
1102 esac
1103 shift 2
1104 done
1105
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1106 # check valgrind's results
1107 if [ "$MEMCHECK" -gt 0 ]; then
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1108 if is_polar "$SRV_CMD" && has_mem_err $SRV_OUT; then
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1109 fail "Server has memory errors"
1110 return
1111 fi
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1112 if is_polar "$CLI_CMD" && has_mem_err $CLI_OUT; then
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1113 fail "Client has memory errors"
1114 return
1115 fi
1116 fi
1117
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1118 # if we're here, everything is ok
Gilles Peskinea28fd412021-10-19 17:23:25 +0200[diff] [blame]1119 outcome=PASS
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]1120}
1121
Gilles Peskine5d8e7022021-10-19 16:35:35 +0200[diff] [blame]1122# Run the current test case: start the server and if applicable the proxy, run
1123# the client, wait for all processes to finish or time out.
1124#
1125# Inputs:
1126# * $NAME: test case name
1127# * $CLI_CMD, $SRV_CMD, $PXY_CMD: commands to run
1128# * $CLI_OUT, $SRV_OUT, $PXY_OUT: files to contain client/server/proxy logs
1129#
1130# Outputs:
1131# * $CLI_EXIT: client return code
1132# * $SRV_RET: server return code
1133do_run_test_once() {
1134 # run the commands
1135 if [ -n "$PXY_CMD" ]; then
1136 printf "# %s\n%s\n" "$NAME" "$PXY_CMD" > $PXY_OUT
1137 $PXY_CMD >> $PXY_OUT 2>&1 &
1138 PXY_PID=$!
1139 wait_proxy_start "$PXY_PORT" "$PXY_PID"
1140 fi
1141
1142 check_osrv_dtls
1143 printf '# %s\n%s\n' "$NAME" "$SRV_CMD" > $SRV_OUT
1144 provide_input | $SRV_CMD >> $SRV_OUT 2>&1 &
1145 SRV_PID=$!
1146 wait_server_start "$SRV_PORT" "$SRV_PID"
1147
1148 printf '# %s\n%s\n' "$NAME" "$CLI_CMD" > $CLI_OUT
Andrzej Kurekd27cdcc2022-05-27 06:44:19 -0400[diff] [blame]1149 # The client must be a subprocess of the script in order for killing it to
1150 # work properly, that's why the ampersand is placed inside the eval command,
1151 # not at the end of the line: the latter approach will spawn eval as a
1152 # subprocess, and the $CLI_CMD as a grandchild.
1153 eval "$CLI_CMD &" >> $CLI_OUT 2>&1
Gilles Peskine5d8e7022021-10-19 16:35:35 +0200[diff] [blame]1154 wait_client_done
1155
1156 sleep 0.05
1157
1158 # terminate the server (and the proxy)
1159 kill $SRV_PID
1160 wait $SRV_PID
1161 SRV_RET=$?
1162
1163 if [ -n "$PXY_CMD" ]; then
1164 kill $PXY_PID >/dev/null 2>&1
1165 wait $PXY_PID
1166 fi
1167}
1168
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]1169# Usage: run_test name [-p proxy_cmd] srv_cmd cli_cmd cli_exit [option [...]]
1170# Options: -s pattern pattern that must be present in server output
1171# -c pattern pattern that must be present in client output
1172# -u pattern lines after pattern must be unique in client output
1173# -f call shell function on client output
1174# -S pattern pattern that must be absent in server output
1175# -C pattern pattern that must be absent in client output
1176# -U pattern lines after pattern must be unique in server output
1177# -F call shell function on server output
1178# -g call shell function on server and client output
1179run_test() {
1180 NAME="$1"
1181 shift 1
1182
1183 if is_excluded "$NAME"; then
1184 SKIP_NEXT="NO"
1185 # There was no request to run the test, so don't record its outcome.
1186 return
1187 fi
1188
1189 print_name "$NAME"
1190
1191 # Do we only run numbered tests?
1192 if [ -n "$RUN_TEST_NUMBER" ]; then
1193 case ",$RUN_TEST_NUMBER," in
1194 *",$TESTS,"*) :;;
1195 *) SKIP_NEXT="YES";;
1196 esac
1197 fi
1198
1199 # does this test use a proxy?
1200 if [ "X$1" = "X-p" ]; then
1201 PXY_CMD="$2"
1202 shift 2
1203 else
1204 PXY_CMD=""
1205 fi
1206
1207 # get commands and client output
1208 SRV_CMD="$1"
1209 CLI_CMD="$2"
1210 CLI_EXPECT="$3"
1211 shift 3
1212
1213 # Check if test uses files
1214 case "$SRV_CMD $CLI_CMD" in
1215 *data_files/*)
1216 requires_config_enabled MBEDTLS_FS_IO;;
1217 esac
1218
Gilles Peskinee5f49582022-02-25 19:46:30 +0100[diff] [blame]1219 # Check if the test uses DTLS.
1220 detect_dtls "$SRV_CMD"
1221 if [ "$DTLS" -eq 1 ]; then
1222 requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
1223 fi
1224
Gilles Peskine511fdf42022-04-08 19:26:26 +0200[diff] [blame]1225 # If the client or server requires certain features that can be detected
1226 # from their command-line arguments, check that they're enabled.
1227 detect_required_features "$SRV_CMD" "$@"
1228 detect_required_features "$CLI_CMD" "$@"
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]1229
Gilles Peskine89d892f2022-02-25 19:52:52 +0100[diff] [blame]1230 # If we're in a PSK-only build and the test can be adapted to PSK, do that.
1231 maybe_adapt_for_psk "$@"
1232
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]1233 # should we skip?
1234 if [ "X$SKIP_NEXT" = "XYES" ]; then
1235 SKIP_NEXT="NO"
1236 record_outcome "SKIP"
1237 SKIPS=$(( $SKIPS + 1 ))
1238 return
1239 fi
1240
1241 analyze_test_commands "$@"
1242
Andrzej Kurek363553b2022-04-01 08:52:06 -0400[diff] [blame]1243 # One regular run and two retries
1244 TIMES_LEFT=3
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]1245 while [ $TIMES_LEFT -gt 0 ]; do
1246 TIMES_LEFT=$(( $TIMES_LEFT - 1 ))
1247
Gilles Peskine5d8e7022021-10-19 16:35:35 +0200[diff] [blame]1248 do_run_test_once
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]1249
Gilles Peskinea28fd412021-10-19 17:23:25 +0200[diff] [blame]1250 check_test_failure "$@"
1251 case $outcome in
1252 PASS) break;;
Gilles Peskine2d3c9f82021-10-19 18:00:10 +0200[diff] [blame]1253 RETRY*) printf "$outcome ";;
Gilles Peskinea28fd412021-10-19 17:23:25 +0200[diff] [blame]1254 FAIL) return;;
1255 esac
Gilles Peskinef9022b02021-10-19 16:25:10 +0200[diff] [blame]1256 done
1257
Gilles Peskinea28fd412021-10-19 17:23:25 +0200[diff] [blame]1258 # If we get this far, the test case passed.
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1259 record_outcome "PASS"
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]1260 if [ "$PRESERVE_LOGS" -gt 0 ]; then
1261 mv $SRV_OUT o-srv-${TESTS}.log
1262 mv $CLI_OUT o-cli-${TESTS}.log
Hanno Becker7be2e5b2018-08-20 12:21:35 +0100[diff] [blame]1263 if [ -n "$PXY_CMD" ]; then
1264 mv $PXY_OUT o-pxy-${TESTS}.log
1265 fi
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]1266 fi
1267
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1268 rm -f $SRV_OUT $CLI_OUT $PXY_OUT
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1269}
1270
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1271run_test_psa() {
1272 requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]1273 set_maybe_calc_verify none
Hanno Beckere9420c22018-11-20 11:37:34 +0000[diff] [blame]1274 run_test "PSA-supported ciphersuite: $1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]1275 "$P_SRV debug_level=3 force_version=tls12" \
1276 "$P_CLI debug_level=3 force_version=tls12 force_ciphersuite=$1" \
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1277 0 \
1278 -c "Successfully setup PSA-based decryption cipher context" \
1279 -c "Successfully setup PSA-based encryption cipher context" \
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]1280 -c "$maybe_calc_verify" \
Andrzej Kurek92dd4d02019-01-30 04:10:19 -0500[diff] [blame]1281 -c "calc PSA finished" \
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1282 -s "Successfully setup PSA-based decryption cipher context" \
1283 -s "Successfully setup PSA-based encryption cipher context" \
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]1284 -s "$maybe_calc_verify" \
Andrzej Kurek92dd4d02019-01-30 04:10:19 -0500[diff] [blame]1285 -s "calc PSA finished" \
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1286 -C "Failed to setup PSA-based cipher context"\
1287 -S "Failed to setup PSA-based cipher context"\
1288 -s "Protocol is TLSv1.2" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1289 -c "Perform PSA-based ECDH computation."\
Andrzej Kureke85414e2019-01-15 05:23:59 -0500[diff] [blame]1290 -c "Perform PSA-based computation of digest of ServerKeyExchange" \
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1291 -S "error" \
1292 -C "error"
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]1293 unset maybe_calc_verify
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1294}
1295
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1296run_test_psa_force_curve() {
1297 requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]1298 set_maybe_calc_verify none
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1299 run_test "PSA - ECDH with $1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]1300 "$P_SRV debug_level=4 force_version=tls12" \
1301 "$P_CLI debug_level=4 force_version=tls12 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256 curves=$1" \
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1302 0 \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1303 -c "Successfully setup PSA-based decryption cipher context" \
1304 -c "Successfully setup PSA-based encryption cipher context" \
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]1305 -c "$maybe_calc_verify" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1306 -c "calc PSA finished" \
1307 -s "Successfully setup PSA-based decryption cipher context" \
1308 -s "Successfully setup PSA-based encryption cipher context" \
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]1309 -s "$maybe_calc_verify" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1310 -s "calc PSA finished" \
1311 -C "Failed to setup PSA-based cipher context"\
1312 -S "Failed to setup PSA-based cipher context"\
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1313 -s "Protocol is TLSv1.2" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1314 -c "Perform PSA-based ECDH computation."\
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]1315 -c "Perform PSA-based computation of digest of ServerKeyExchange" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1316 -S "error" \
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]1317 -C "error"
Gilles Peskine64c683f2022-03-14 17:55:04 +0100[diff] [blame]1318 unset maybe_calc_verify
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1319}
1320
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1321# Test that the server's memory usage after a handshake is reduced when a client specifies
1322# a maximum fragment length.
1323# first argument ($1) is MFL for SSL client
1324# second argument ($2) is memory usage for SSL client with default MFL (16k)
1325run_test_memory_after_hanshake_with_mfl()
1326{
1327 # The test passes if the difference is around 2*(16k-MFL)
Gilles Peskine5b428d72020-08-26 21:52:23 +0200[diff] [blame]1328 MEMORY_USAGE_LIMIT="$(( $2 - ( 2 * ( 16384 - $1 )) ))"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1329
1330 # Leave some margin for robustness
1331 MEMORY_USAGE_LIMIT="$(( ( MEMORY_USAGE_LIMIT * 110 ) / 100 ))"
1332
1333 run_test "Handshake memory usage (MFL $1)" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]1334 "$P_SRV debug_level=3 auth_mode=required force_version=tls12" \
1335 "$P_CLI debug_level=3 force_version=tls12 \
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1336 crt_file=data_files/server5.crt key_file=data_files/server5.key \
1337 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM max_frag_len=$1" \
1338 0 \
1339 -F "handshake_memory_check $MEMORY_USAGE_LIMIT"
1340}
1341
1342
1343# Test that the server's memory usage after a handshake is reduced when a client specifies
1344# different values of Maximum Fragment Length: default (16k), 4k, 2k, 1k and 512 bytes
1345run_tests_memory_after_hanshake()
1346{
1347 # all tests in this sequence requires the same configuration (see requires_config_enabled())
1348 SKIP_THIS_TESTS="$SKIP_NEXT"
1349
1350 # first test with default MFU is to get reference memory usage
1351 MEMORY_USAGE_MFL_16K=0
1352 run_test "Handshake memory usage initial (MFL 16384 - default)" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]1353 "$P_SRV debug_level=3 auth_mode=required force_version=tls12" \
1354 "$P_CLI debug_level=3 force_version=tls12 \
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1355 crt_file=data_files/server5.crt key_file=data_files/server5.key \
1356 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM" \
1357 0 \
1358 -F "handshake_memory_get MEMORY_USAGE_MFL_16K"
1359
1360 SKIP_NEXT="$SKIP_THIS_TESTS"
1361 run_test_memory_after_hanshake_with_mfl 4096 "$MEMORY_USAGE_MFL_16K"
1362
1363 SKIP_NEXT="$SKIP_THIS_TESTS"
1364 run_test_memory_after_hanshake_with_mfl 2048 "$MEMORY_USAGE_MFL_16K"
1365
1366 SKIP_NEXT="$SKIP_THIS_TESTS"
1367 run_test_memory_after_hanshake_with_mfl 1024 "$MEMORY_USAGE_MFL_16K"
1368
1369 SKIP_NEXT="$SKIP_THIS_TESTS"
1370 run_test_memory_after_hanshake_with_mfl 512 "$MEMORY_USAGE_MFL_16K"
1371}
1372
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]1373cleanup() {
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1374 rm -f $CLI_OUT $SRV_OUT $PXY_OUT $SESSION
Piotr Nowicki3de298f2020-04-16 14:35:19 +0200[diff] [blame]1375 rm -f context_srv.txt
1376 rm -f context_cli.txt
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]1377 test -n "${SRV_PID:-}" && kill $SRV_PID >/dev/null 2>&1
1378 test -n "${PXY_PID:-}" && kill $PXY_PID >/dev/null 2>&1
1379 test -n "${CLI_PID:-}" && kill $CLI_PID >/dev/null 2>&1
1380 test -n "${DOG_PID:-}" && kill $DOG_PID >/dev/null 2>&1
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]1381 exit 1
1382}
1383
Manuel Pégourié-Gonnard9dea8bd2014-02-26 18:21:02 +0100[diff] [blame]1384#
1385# MAIN
1386#
1387
Manuel Pégourié-Gonnard913030c2014-03-28 10:12:38 +0100[diff] [blame]1388get_options "$@"
1389
Yanray Wang56599812023-02-28 11:56:59 +0800[diff] [blame^]1390# Make the outcome file path relative to the original directory, not
1391# to .../tests
1392case "$MBEDTLS_TEST_OUTCOME_FILE" in
1393 [!/]*)
1394 MBEDTLS_TEST_OUTCOME_FILE="$ORIGINAL_PWD/$MBEDTLS_TEST_OUTCOME_FILE"
1395 ;;
1396esac
1397
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]1398# Optimize filters: if $FILTER and $EXCLUDE can be expressed as shell
1399# patterns rather than regular expressions, use a case statement instead
1400# of calling grep. To keep the optimizer simple, it is incomplete and only
1401# detects simple cases: plain substring, everything, nothing.
1402#
1403# As an exception, the character '.' is treated as an ordinary character
1404# if it is the only special character in the string. This is because it's
1405# rare to need "any one character", but needing a literal '.' is common
1406# (e.g. '-f "DTLS 1.2"').
1407need_grep=
1408case "$FILTER" in
1409 '^$') simple_filter=;;
1410 '.*') simple_filter='*';;
Gilles Peskineb09e0012020-09-29 23:48:39 +0200[diff] [blame]1411 *[][$+*?\\^{\|}]*) # Regexp special characters (other than .), we need grep
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]1412 need_grep=1;;
1413 *) # No regexp or shell-pattern special character
1414 simple_filter="*$FILTER*";;
1415esac
1416case "$EXCLUDE" in
1417 '^$') simple_exclude=;;
1418 '.*') simple_exclude='*';;
Gilles Peskineb09e0012020-09-29 23:48:39 +0200[diff] [blame]1419 *[][$+*?\\^{\|}]*) # Regexp special characters (other than .), we need grep
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]1420 need_grep=1;;
1421 *) # No regexp or shell-pattern special character
1422 simple_exclude="*$EXCLUDE*";;
1423esac
1424if [ -n "$need_grep" ]; then
1425 is_excluded () {
1426 ! echo "$1" | grep "$FILTER" | grep -q -v "$EXCLUDE"
1427 }
1428else
1429 is_excluded () {
1430 case "$1" in
1431 $simple_exclude) true;;
1432 $simple_filter) false;;
1433 *) true;;
1434 esac
1435 }
1436fi
1437
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]1438# sanity checks, avoid an avalanche of errors
Hanno Becker4ac73e72017-10-23 15:27:37 +0100[diff] [blame]1439P_SRV_BIN="${P_SRV%%[ ]*}"
1440P_CLI_BIN="${P_CLI%%[ ]*}"
1441P_PXY_BIN="${P_PXY%%[ ]*}"
Hanno Becker17c04932017-10-10 14:44:53 +0100[diff] [blame]1442if [ ! -x "$P_SRV_BIN" ]; then
1443 echo "Command '$P_SRV_BIN' is not an executable file"
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]1444 exit 1
1445fi
Hanno Becker17c04932017-10-10 14:44:53 +0100[diff] [blame]1446if [ ! -x "$P_CLI_BIN" ]; then
1447 echo "Command '$P_CLI_BIN' is not an executable file"
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]1448 exit 1
1449fi
Hanno Becker17c04932017-10-10 14:44:53 +0100[diff] [blame]1450if [ ! -x "$P_PXY_BIN" ]; then
1451 echo "Command '$P_PXY_BIN' is not an executable file"
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1452 exit 1
1453fi
Simon Butcher3c0d7b82016-05-23 11:13:17 +0100[diff] [blame]1454if [ "$MEMCHECK" -gt 0 ]; then
1455 if which valgrind >/dev/null 2>&1; then :; else
1456 echo "Memcheck not possible. Valgrind not found"
1457 exit 1
1458 fi
1459fi
Manuel Pégourié-Gonnard89d40272022-12-19 11:42:12 +0100[diff] [blame]1460if which $OPENSSL >/dev/null 2>&1; then :; else
1461 echo "Command '$OPENSSL' not found"
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]1462 exit 1
1463fi
1464
Manuel Pégourié-Gonnard32f8f4d2014-05-29 11:31:20 +0200[diff] [blame]1465# used by watchdog
1466MAIN_PID="$$"
1467
Manuel Pégourié-Gonnard0d225da2018-01-22 10:22:09 +0100[diff] [blame]1468# We use somewhat arbitrary delays for tests:
1469# - how long do we wait for the server to start (when lsof not available)?
1470# - how long do we allow for the client to finish?
1471# (not to check performance, just to avoid waiting indefinitely)
1472# Things are slower with valgrind, so give extra time here.
1473#
1474# Note: without lsof, there is a trade-off between the running time of this
1475# script and the risk of spurious errors because we didn't wait long enough.
1476# The watchdog delay on the other hand doesn't affect normal running time of
1477# the script, only the case where a client or server gets stuck.
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]1478if [ "$MEMCHECK" -gt 0 ]; then
Manuel Pégourié-Gonnard0d225da2018-01-22 10:22:09 +0100[diff] [blame]1479 START_DELAY=6
1480 DOG_DELAY=60
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]1481else
Manuel Pégourié-Gonnard0d225da2018-01-22 10:22:09 +0100[diff] [blame]1482 START_DELAY=2
1483 DOG_DELAY=20
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]1484fi
Manuel Pégourié-Gonnard0d225da2018-01-22 10:22:09 +0100[diff] [blame]1485
1486# some particular tests need more time:
1487# - for the client, we multiply the usual watchdog limit by a factor
1488# - for the server, we sleep for a number of seconds after the client exits
1489# see client_need_more_time() and server_needs_more_time()
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]1490CLI_DELAY_FACTOR=1
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]1491SRV_DELAY_SECONDS=0
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]1492
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1493# fix commands to use this port, force IPv4 while at it
Manuel Pégourié-Gonnard0af1ba32015-01-21 11:44:33 +0000[diff] [blame]1494# +SRV_PORT will be replaced by either $SRV_PORT or $PXY_PORT later
Paul Elliottccba1292021-10-12 16:10:37 +0100[diff] [blame]1495# Note: Using 'localhost' rather than 127.0.0.1 here is unwise, as on many
1496# machines that will resolve to ::1, and we don't want ipv6 here.
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1497P_SRV="$P_SRV server_addr=127.0.0.1 server_port=$SRV_PORT"
1498P_CLI="$P_CLI server_addr=127.0.0.1 server_port=+SRV_PORT"
Andres AGf04f54d2016-10-10 15:46:20 +0100[diff] [blame]1499P_PXY="$P_PXY server_addr=127.0.0.1 server_port=$SRV_PORT listen_addr=127.0.0.1 listen_port=$PXY_PORT ${SEED:+"seed=$SEED"}"
Gilles Peskine3aec89b2021-04-01 14:00:11 +0200[diff] [blame]1500O_SRV="$O_SRV -accept $SRV_PORT"
Paul Elliottccba1292021-10-12 16:10:37 +0100[diff] [blame]1501O_CLI="$O_CLI -connect 127.0.0.1:+SRV_PORT"
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1502G_SRV="$G_SRV -p $SRV_PORT"
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]1503G_CLI="$G_CLI -p +SRV_PORT"
Manuel Pégourié-Gonnard8066b812014-05-28 22:59:30 +0200[diff] [blame]1504
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]1505if [ -n "${OPENSSL_LEGACY:-}" ]; then
1506 O_LEGACY_SRV="$O_LEGACY_SRV -accept $SRV_PORT -dhparam data_files/dhparams.pem"
Paul Elliottccba1292021-10-12 16:10:37 +0100[diff] [blame]1507 O_LEGACY_CLI="$O_LEGACY_CLI -connect 127.0.0.1:+SRV_PORT"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]1508fi
1509
Gilles Peskine4eea1962022-11-24 22:21:15 +0100[diff] [blame]1510# Newer versions of OpenSSL have a syntax to enable all "ciphers", even
1511# low-security ones. This covers not just cipher suites but also protocol
1512# versions. It is necessary, for example, to use (D)TLS 1.0/1.1 on
1513# OpenSSL 1.1.1f from Ubuntu 20.04. The syntax was only introduced in
1514# OpenSSL 1.1.0 (21e0c1d23afff48601eb93135defddae51f7e2e3) and I can't find
1515# a way to discover it from -help, so check the openssl version.
Manuel Pégourié-Gonnard89d40272022-12-19 11:42:12 +0100[diff] [blame]1516case $($OPENSSL version) in
Gilles Peskine4eea1962022-11-24 22:21:15 +0100[diff] [blame]1517 "OpenSSL 0"*|"OpenSSL 1.0"*) :;;
1518 *)
1519 O_CLI="$O_CLI -cipher ALL@SECLEVEL=0"
1520 O_SRV="$O_SRV -cipher ALL@SECLEVEL=0"
1521 ;;
1522esac
1523
Paul Elliott633a74e2021-10-13 18:31:07 +0100[diff] [blame]1524if [ -n "${OPENSSL_NEXT:-}" ]; then
1525 O_NEXT_SRV="$O_NEXT_SRV -accept $SRV_PORT"
Paul Elliottccba1292021-10-12 16:10:37 +0100[diff] [blame]1526 O_NEXT_CLI="$O_NEXT_CLI -connect 127.0.0.1:+SRV_PORT"
Paul Elliott633a74e2021-10-13 18:31:07 +0100[diff] [blame]1527fi
1528
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]1529if [ -n "${GNUTLS_NEXT_SERV:-}" ]; then
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]1530 G_NEXT_SRV="$G_NEXT_SRV -p $SRV_PORT"
1531fi
1532
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]1533if [ -n "${GNUTLS_NEXT_CLI:-}" ]; then
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]1534 G_NEXT_CLI="$G_NEXT_CLI -p +SRV_PORT"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]1535fi
Manuel Pégourié-Gonnardc1da6642014-02-25 14:18:30 +0100[diff] [blame]1536
Gilles Peskine62469d92017-05-10 10:13:59 +0200[diff] [blame]1537# Allow SHA-1, because many of our test certificates use it
1538P_SRV="$P_SRV allow_sha1=1"
1539P_CLI="$P_CLI allow_sha1=1"
1540
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1541# Also pick a unique name for intermediate files
1542SRV_OUT="srv_out.$$"
1543CLI_OUT="cli_out.$$"
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1544PXY_OUT="pxy_out.$$"
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1545SESSION="session.$$"
1546
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]1547SKIP_NEXT="NO"
1548
Manuel Pégourié-Gonnardc1da6642014-02-25 14:18:30 +0100[diff] [blame]1549trap cleanup INT TERM HUP
1550
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]1551# Basic test
1552
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]1553# Checks that:
1554# - things work with all ciphersuites active (used with config-full in all.sh)
Gilles Peskinede4cb352022-04-05 22:00:32 +0200[diff] [blame]1555# - the expected parameters are selected
Gilles Peskinedf4ad902022-04-08 15:14:38 +0200[diff] [blame]1556requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskinedff48c12022-02-25 19:50:38 +0100[diff] [blame]1557requires_ciphersuite_enabled TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256
Gilles Peskinede4cb352022-04-05 22:00:32 +0200[diff] [blame]1558requires_config_enabled MBEDTLS_SHA512_C # "signature_algorithm ext: 6"
1559requires_config_enabled MBEDTLS_ECP_DP_SECP521R1_ENABLED
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]1560run_test "Default" \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]1561 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]1562 "$P_CLI" \
1563 0 \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]1564 -s "Protocol is TLSv1.2" \
Manuel Pégourié-Gonnardce66d5e2018-06-14 11:11:15 +0200[diff] [blame]1565 -s "Ciphersuite is TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256" \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]1566 -s "client hello v3, signature_algorithm ext: 6" \
1567 -s "ECDHE curve: secp521r1" \
1568 -S "error" \
1569 -C "error"
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]1570
Gilles Peskinedf4ad902022-04-08 15:14:38 +0200[diff] [blame]1571requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskinedff48c12022-02-25 19:50:38 +0100[diff] [blame]1572requires_ciphersuite_enabled TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256
Manuel Pégourié-Gonnard3bb08012015-01-22 13:34:21 +0000[diff] [blame]1573run_test "Default, DTLS" \
1574 "$P_SRV dtls=1" \
1575 "$P_CLI dtls=1" \
1576 0 \
1577 -s "Protocol is DTLSv1.2" \
Manuel Pégourié-Gonnardce66d5e2018-06-14 11:11:15 +0200[diff] [blame]1578 -s "Ciphersuite is TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256"
Manuel Pégourié-Gonnard3bb08012015-01-22 13:34:21 +0000[diff] [blame]1579
Hanno Becker721f7c12020-08-17 12:17:32 +0100[diff] [blame]1580run_test "TLS client auth: required" \
1581 "$P_SRV auth_mode=required" \
1582 "$P_CLI" \
1583 0 \
1584 -s "Verifying peer X.509 certificate... ok"
1585
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]1586requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
1587requires_config_enabled MBEDTLS_ECDSA_C
1588requires_config_enabled MBEDTLS_SHA256_C
1589run_test "TLS: password protected client key" \
1590 "$P_SRV auth_mode=required" \
1591 "$P_CLI crt_file=data_files/server5.crt key_file=data_files/server5.key.enc key_pwd=PolarSSLTest" \
1592 0
1593
1594requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
1595requires_config_enabled MBEDTLS_ECDSA_C
1596requires_config_enabled MBEDTLS_SHA256_C
1597run_test "TLS: password protected server key" \
1598 "$P_SRV crt_file=data_files/server5.crt key_file=data_files/server5.key.enc key_pwd=PolarSSLTest" \
1599 "$P_CLI" \
1600 0
1601
1602requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
1603requires_config_enabled MBEDTLS_ECDSA_C
1604requires_config_enabled MBEDTLS_RSA_C
1605requires_config_enabled MBEDTLS_SHA256_C
1606run_test "TLS: password protected server key, two certificates" \
1607 "$P_SRV \
1608 key_file=data_files/server5.key.enc key_pwd=PolarSSLTest crt_file=data_files/server5.crt \
1609 key_file2=data_files/server2.key.enc key_pwd2=PolarSSLTest crt_file2=data_files/server2.crt" \
1610 "$P_CLI" \
1611 0
1612
Manuel Pégourié-Gonnard342d2ca2020-01-02 11:58:00 +0100[diff] [blame]1613requires_config_enabled MBEDTLS_ZLIB_SUPPORT
1614run_test "Default (compression enabled)" \
1615 "$P_SRV debug_level=3" \
1616 "$P_CLI debug_level=3" \
1617 0 \
1618 -s "Allocating compression buffer" \
1619 -c "Allocating compression buffer" \
1620 -s "Record expansion is unknown (compression)" \
1621 -c "Record expansion is unknown (compression)" \
1622 -S "error" \
1623 -C "error"
1624
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]1625requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
1626run_test "CA callback on client" \
1627 "$P_SRV debug_level=3" \
1628 "$P_CLI ca_callback=1 debug_level=3 " \
1629 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]1630 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]1631 -S "error" \
1632 -C "error"
1633
1634requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
1635requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
1636requires_config_enabled MBEDTLS_ECDSA_C
1637requires_config_enabled MBEDTLS_SHA256_C
1638run_test "CA callback on server" \
1639 "$P_SRV auth_mode=required" \
1640 "$P_CLI ca_callback=1 debug_level=3 crt_file=data_files/server5.crt \
1641 key_file=data_files/server5.key" \
1642 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]1643 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]1644 -s "Verifying peer X.509 certificate... ok" \
1645 -S "error" \
1646 -C "error"
1647
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]1648# Test using an opaque private key for client authentication
1649requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1650requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
1651requires_config_enabled MBEDTLS_ECDSA_C
1652requires_config_enabled MBEDTLS_SHA256_C
1653run_test "Opaque key for client authentication" \
Przemyslaw Stekielb3de3fd2021-10-26 12:25:27 +0200[diff] [blame]1654 "$P_SRV auth_mode=required crt_file=data_files/server5.crt \
1655 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]1656 "$P_CLI key_opaque=1 crt_file=data_files/server5.crt \
1657 key_file=data_files/server5.key" \
1658 0 \
1659 -c "key type: Opaque" \
Przemyslaw Stekielb3de3fd2021-10-26 12:25:27 +0200[diff] [blame]1660 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]1661 -s "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielb3de3fd2021-10-26 12:25:27 +0200[diff] [blame]1662 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]1663 -S "error" \
1664 -C "error"
1665
Przemyslaw Stekielab09c9e2021-10-04 11:13:22 +0200[diff] [blame]1666# Test using an opaque private key for server authentication
1667requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1668requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
1669requires_config_enabled MBEDTLS_ECDSA_C
1670requires_config_enabled MBEDTLS_SHA256_C
1671run_test "Opaque key for server authentication" \
Przemyslaw Stekielb3de3fd2021-10-26 12:25:27 +0200[diff] [blame]1672 "$P_SRV auth_mode=required key_opaque=1 crt_file=data_files/server5.crt \
1673 key_file=data_files/server5.key" \
Przemyslaw Stekielab09c9e2021-10-04 11:13:22 +0200[diff] [blame]1674 "$P_CLI crt_file=data_files/server5.crt \
1675 key_file=data_files/server5.key" \
1676 0 \
1677 -c "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielb3de3fd2021-10-26 12:25:27 +0200[diff] [blame]1678 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
1679 -s "key types: Opaque - invalid PK" \
1680 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
Przemyslaw Stekielab09c9e2021-10-04 11:13:22 +0200[diff] [blame]1681 -S "error" \
1682 -C "error"
1683
Przemyslaw Stekiel5b6c4c92021-10-06 11:31:49 +0200[diff] [blame]1684# Test using an opaque private key for client/server authentication
1685requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1686requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
1687requires_config_enabled MBEDTLS_ECDSA_C
1688requires_config_enabled MBEDTLS_SHA256_C
1689run_test "Opaque key for client/server authentication" \
Przemyslaw Stekielb3de3fd2021-10-26 12:25:27 +0200[diff] [blame]1690 "$P_SRV auth_mode=required key_opaque=1 crt_file=data_files/server5.crt \
1691 key_file=data_files/server5.key" \
Przemyslaw Stekiel5b6c4c92021-10-06 11:31:49 +0200[diff] [blame]1692 "$P_CLI key_opaque=1 crt_file=data_files/server5.crt \
1693 key_file=data_files/server5.key" \
1694 0 \
1695 -c "key type: Opaque" \
1696 -c "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielb3de3fd2021-10-26 12:25:27 +0200[diff] [blame]1697 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
1698 -s "key types: Opaque - invalid PK" \
Przemyslaw Stekiel5b6c4c92021-10-06 11:31:49 +0200[diff] [blame]1699 -s "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielb3de3fd2021-10-26 12:25:27 +0200[diff] [blame]1700 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
Przemyslaw Stekiel5b6c4c92021-10-06 11:31:49 +0200[diff] [blame]1701 -S "error" \
1702 -C "error"
1703
Manuel Pégourié-Gonnard938be422022-06-14 10:43:36 +0200[diff] [blame]1704# Opaque keys not supported for static ECDH
1705requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1706requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
1707run_test "Opaque key: server: ECDH-ECDSA not supported" \
1708 "$P_SRV debug_level=1 key_opaque=1
1709 crt_file=data_files/server5.crt key_file=data_files/server5.key" \
1710 "$P_CLI force_ciphersuite=TLS-ECDH-ECDSA-WITH-AES-128-GCM-SHA256" \
1711 1 \
1712 -s "server key not ECDH capable" \
1713 -s "ssl_get_ecdh_params_from_cert() returned" \
1714 -s "error" \
1715 -c "error"
1716
1717# Opaque keys not supported for static ECDH
1718requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1719requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
1720run_test "Opaque key: server: ECDH-RSA not supported" \
1721 "$P_SRV debug_level=1 key_opaque=1
1722 crt_file=data_files/server5.crt key_file=data_files/server5.key" \
1723 "$P_CLI force_ciphersuite=TLS-ECDH-RSA-WITH-AES-128-GCM-SHA256" \
1724 1 \
1725 -s "server key not ECDH capable" \
1726 -s "ssl_get_ecdh_params_from_cert() returned" \
1727 -s "error" \
1728 -c "error"
1729
Manuel Pégourié-Gonnarda49a00c2022-06-14 10:45:19 +0200[diff] [blame]1730# Opaque PSKs not supported for mixed PSK
1731
1732requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1733run_test "Opaque psk: client: ECDHE-PSK not supported" \
1734 "$P_SRV debug_level=1 psk=abc123 psk_identity=foo" \
1735 "$P_CLI debug_level=1 psk=abc123 psk_identity=foo psk_opaque=1 \
1736 force_version=tls12 \
1737 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA" \
1738 1 \
1739 -c "opaque PSK not supported with ECDHE-PSK" \
1740 -s "error" \
1741 -c "error"
1742
1743requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1744run_test "Opaque psk: client: DHE-PSK not supported" \
1745 "$P_SRV debug_level=1 psk=abc123 psk_identity=foo" \
1746 "$P_CLI debug_level=1 psk=abc123 psk_identity=foo psk_opaque=1 \
1747 force_version=tls12 \
1748 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA" \
1749 1 \
1750 -c "opaque PSK not supported with DHE-PSK" \
1751 -s "error" \
1752 -c "error"
1753
1754requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1755run_test "Opaque psk: client: RSA-PSK not supported" \
1756 "$P_SRV debug_level=1 psk=abc123 psk_identity=foo" \
1757 "$P_CLI debug_level=1 psk=abc123 psk_identity=foo psk_opaque=1 \
1758 force_version=tls12 \
1759 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA" \
1760 1 \
1761 -c "opaque PSK not supported with RSA-PSK" \
1762 -s "error" \
1763 -c "error"
1764
Manuel Pégourié-Gonnardd80d8a42022-06-14 10:53:15 +0200[diff] [blame]1765requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1766run_test "Opaque psk: server: ECDHE-PSK not supported" \
1767 "$P_SRV debug_level=1 psk=abc123 psk_identity=foo psk_opaque=1 \
1768 force_version=tls12 \
1769 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA" \
1770 "$P_CLI debug_level=1 psk=abc123 psk_identity=foo" \
1771 1 \
1772 -s "opaque PSK not supported with ECDHE-PSK" \
1773 -s "error" \
1774 -c "error"
1775
1776requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1777run_test "Opaque psk: server: DHE-PSK not supported" \
1778 "$P_SRV debug_level=1 psk=abc123 psk_identity=foo psk_opaque=1 \
1779 force_version=tls12 \
1780 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA" \
1781 "$P_CLI debug_level=1 psk=abc123 psk_identity=foo" \
1782 1 \
1783 -s "opaque PSK not supported with DHE-PSK" \
1784 -s "error" \
1785 -c "error"
1786
1787requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
1788run_test "Opaque psk: server: RSA-PSK not supported" \
1789 "$P_SRV debug_level=1 psk=abc123 psk_identity=foo psk_opaque=1 \
1790 force_version=tls12 \
1791 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA" \
1792 "$P_CLI debug_level=1 psk=abc123 psk_identity=foo" \
1793 1 \
1794 -s "opaque PSK not supported with RSA-PSK" \
1795 -s "error" \
1796 -c "error"
1797
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1798# Test ciphersuites which we expect to be fully supported by PSA Crypto
1799# and check that we don't fall back to Mbed TLS' internal crypto primitives.
1800run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CCM
1801run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8
1802run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CCM
1803run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CCM-8
1804run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256
1805run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384
1806run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA
1807run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256
1808run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384
1809
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1810requires_config_enabled MBEDTLS_ECP_DP_SECP521R1_ENABLED
1811run_test_psa_force_curve "secp521r1"
1812requires_config_enabled MBEDTLS_ECP_DP_BP512R1_ENABLED
1813run_test_psa_force_curve "brainpoolP512r1"
1814requires_config_enabled MBEDTLS_ECP_DP_SECP384R1_ENABLED
1815run_test_psa_force_curve "secp384r1"
1816requires_config_enabled MBEDTLS_ECP_DP_BP384R1_ENABLED
1817run_test_psa_force_curve "brainpoolP384r1"
1818requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
1819run_test_psa_force_curve "secp256r1"
1820requires_config_enabled MBEDTLS_ECP_DP_SECP256K1_ENABLED
1821run_test_psa_force_curve "secp256k1"
1822requires_config_enabled MBEDTLS_ECP_DP_BP256R1_ENABLED
1823run_test_psa_force_curve "brainpoolP256r1"
1824requires_config_enabled MBEDTLS_ECP_DP_SECP224R1_ENABLED
1825run_test_psa_force_curve "secp224r1"
Gilles Peskinedefdc3b2021-03-23 13:59:58 +0100[diff] [blame]1826## SECP224K1 is buggy via the PSA API
Dave Rodgman52af7692022-03-31 14:27:24 +0100[diff] [blame]1827## (https://github.com/Mbed-TLS/mbedtls/issues/3541),
Gilles Peskinedefdc3b2021-03-23 13:59:58 +0100[diff] [blame]1828## so it is disabled in PSA even when it's enabled in Mbed TLS.
1829## The proper dependency would be on PSA_WANT_ECC_SECP_K1_224 but
1830## dependencies on PSA symbols in ssl-opt.sh are not implemented yet.
1831#requires_config_enabled MBEDTLS_ECP_DP_SECP224K1_ENABLED
1832#run_test_psa_force_curve "secp224k1"
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1833requires_config_enabled MBEDTLS_ECP_DP_SECP192R1_ENABLED
1834run_test_psa_force_curve "secp192r1"
1835requires_config_enabled MBEDTLS_ECP_DP_SECP192K1_ENABLED
1836run_test_psa_force_curve "secp192k1"
1837
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1838# Test current time in ServerHello
1839requires_config_enabled MBEDTLS_HAVE_TIME
Manuel Pégourié-Gonnardce66d5e2018-06-14 11:11:15 +0200[diff] [blame]1840run_test "ServerHello contains gmt_unix_time" \
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1841 "$P_SRV debug_level=3" \
1842 "$P_CLI debug_level=3" \
1843 0 \
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1844 -f "check_server_hello_time" \
1845 -F "check_server_hello_time"
1846
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1847# Test for uniqueness of IVs in AEAD ciphersuites
1848run_test "Unique IV in GCM" \
1849 "$P_SRV exchanges=20 debug_level=4" \
1850 "$P_CLI exchanges=20 debug_level=4 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
1851 0 \
1852 -u "IV used" \
1853 -U "IV used"
1854
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]1855# Tests for certificate verification callback
1856run_test "Configuration-specific CRT verification callback" \
1857 "$P_SRV debug_level=3" \
1858 "$P_CLI context_crt_cb=0 debug_level=3" \
1859 0 \
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]1860 -S "error" \
1861 -c "Verify requested for " \
1862 -c "Use configuration-specific verification callback" \
1863 -C "Use context-specific verification callback" \
1864 -C "error"
1865
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]1866run_test "Context-specific CRT verification callback" \
1867 "$P_SRV debug_level=3" \
1868 "$P_CLI context_crt_cb=1 debug_level=3" \
1869 0 \
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]1870 -S "error" \
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]1871 -c "Verify requested for " \
1872 -c "Use context-specific verification callback" \
1873 -C "Use configuration-specific verification callback" \
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]1874 -C "error"
1875
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]1876# Tests for rc4 option
1877
Gilles Peskine719a6522022-04-15 20:03:33 +0200[diff] [blame]1878# Manual dependencies on the ciphersuite support are necessary
1879# because the automatic requirements from force_ciphersuite=... detection
1880# make an exception for these test cases since they expect a handshake
1881# failure.
1882requires_config_enabled MBEDTLS_ARC4_C
1883requires_config_enabled MBEDTLS_SHA1_C
1884requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Simon Butchera410af52016-05-19 22:12:18 +0100[diff] [blame]1885requires_config_enabled MBEDTLS_REMOVE_ARC4_CIPHERSUITES
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]1886run_test "RC4: server disabled, client enabled" \
1887 "$P_SRV" \
1888 "$P_CLI force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
1889 1 \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]1890 -s "SSL - The server has no ciphersuites in common"
1891
Gilles Peskine719a6522022-04-15 20:03:33 +0200[diff] [blame]1892requires_config_enabled MBEDTLS_ARC4_C
1893requires_config_enabled MBEDTLS_SHA1_C
1894requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Simon Butchera410af52016-05-19 22:12:18 +0100[diff] [blame]1895requires_config_enabled MBEDTLS_REMOVE_ARC4_CIPHERSUITES
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]1896run_test "RC4: server half, client enabled" \
1897 "$P_SRV arc4=1" \
1898 "$P_CLI force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
1899 1 \
1900 -s "SSL - The server has no ciphersuites in common"
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]1901
Gilles Peskine719a6522022-04-15 20:03:33 +0200[diff] [blame]1902requires_config_enabled MBEDTLS_ARC4_C
1903requires_config_enabled MBEDTLS_SHA1_C
1904requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1905requires_config_enabled MBEDTLS_REMOVE_ARC4_CIPHERSUITES
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]1906run_test "RC4: server enabled, client disabled" \
1907 "$P_SRV force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
1908 "$P_CLI" \
1909 1 \
1910 -s "SSL - The server has no ciphersuites in common"
1911
Gilles Peskine719a6522022-04-15 20:03:33 +0200[diff] [blame]1912# Run even if the ciphersuite is disabled by default, but only if the
1913# requisite cryptographic mechanisms are present.
1914# Having "force_ciphersuite=..." in the client or server arguments would
1915# prevent that due to the automatic detection, so hide behind some
1916# shell expansion to fool the automatic detection.
1917with_rc4_ciphersuite() {
1918 exec "$@" force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA
1919}
1920requires_config_enabled MBEDTLS_ARC4_C
1921requires_config_enabled MBEDTLS_SHA1_C
1922requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]1923run_test "RC4: both enabled" \
Gilles Peskine719a6522022-04-15 20:03:33 +0200[diff] [blame]1924 "with_rc4_ciphersuite $P_SRV" \
1925 "with_rc4_ciphersuite $P_CLI" \
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]1926 0 \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]1927 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]1928 -S "SSL - The server has no ciphersuites in common"
1929
Hanno Beckerd26bb202018-08-17 09:54:10 +0100[diff] [blame]1930# Test empty CA list in CertificateRequest in TLS 1.1 and earlier
1931
1932requires_gnutls
Hanno Beckerd26bb202018-08-17 09:54:10 +0100[diff] [blame]1933run_test "CertificateRequest with empty CA list, TLS 1.1 (GnuTLS server)" \
1934 "$G_SRV"\
1935 "$P_CLI force_version=tls1_1" \
1936 0
1937
1938requires_gnutls
Hanno Beckerd26bb202018-08-17 09:54:10 +0100[diff] [blame]1939run_test "CertificateRequest with empty CA list, TLS 1.0 (GnuTLS server)" \
1940 "$G_SRV"\
1941 "$P_CLI force_version=tls1" \
1942 0
1943
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]1944# Tests for SHA-1 support
1945
1946run_test "SHA-1 forbidden by default in server certificate" \
1947 "$P_SRV key_file=data_files/server2.key crt_file=data_files/server2.crt" \
1948 "$P_CLI debug_level=2 allow_sha1=0" \
1949 1 \
1950 -c "The certificate is signed with an unacceptable hash"
1951
1952run_test "SHA-1 explicitly allowed in server certificate" \
1953 "$P_SRV key_file=data_files/server2.key crt_file=data_files/server2.crt" \
1954 "$P_CLI allow_sha1=1" \
1955 0
1956
1957run_test "SHA-256 allowed by default in server certificate" \
1958 "$P_SRV key_file=data_files/server2.key crt_file=data_files/server2-sha256.crt" \
1959 "$P_CLI allow_sha1=0" \
1960 0
1961
1962run_test "SHA-1 forbidden by default in client certificate" \
1963 "$P_SRV auth_mode=required allow_sha1=0" \
1964 "$P_CLI key_file=data_files/cli-rsa.key crt_file=data_files/cli-rsa-sha1.crt" \
1965 1 \
1966 -s "The certificate is signed with an unacceptable hash"
1967
1968run_test "SHA-1 explicitly allowed in client certificate" \
1969 "$P_SRV auth_mode=required allow_sha1=1" \
1970 "$P_CLI key_file=data_files/cli-rsa.key crt_file=data_files/cli-rsa-sha1.crt" \
1971 0
1972
1973run_test "SHA-256 allowed by default in client certificate" \
1974 "$P_SRV auth_mode=required allow_sha1=0" \
1975 "$P_CLI key_file=data_files/cli-rsa.key crt_file=data_files/cli-rsa-sha256.crt" \
1976 0
1977
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]1978# Tests for datagram packing
1979run_test "DTLS: multiple records in same datagram, client and server" \
1980 "$P_SRV dtls=1 dgram_packing=1 debug_level=2" \
1981 "$P_CLI dtls=1 dgram_packing=1 debug_level=2" \
1982 0 \
1983 -c "next record in same datagram" \
1984 -s "next record in same datagram"
1985
1986run_test "DTLS: multiple records in same datagram, client only" \
1987 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
1988 "$P_CLI dtls=1 dgram_packing=1 debug_level=2" \
1989 0 \
1990 -s "next record in same datagram" \
1991 -C "next record in same datagram"
1992
1993run_test "DTLS: multiple records in same datagram, server only" \
1994 "$P_SRV dtls=1 dgram_packing=1 debug_level=2" \
1995 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
1996 0 \
1997 -S "next record in same datagram" \
1998 -c "next record in same datagram"
1999
2000run_test "DTLS: multiple records in same datagram, neither client nor server" \
2001 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
2002 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
2003 0 \
2004 -S "next record in same datagram" \
2005 -C "next record in same datagram"
2006
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2007# Tests for Truncated HMAC extension
2008
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2009run_test "Truncated HMAC: client default, server default" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2010 "$P_SRV debug_level=4" \
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2011 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2012 0 \
Hanno Becker992b6872017-11-09 18:57:39 +0000[diff] [blame]2013 -s "dumping 'expected mac' (20 bytes)" \
2014 -S "dumping 'expected mac' (10 bytes)"
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]2015
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]2016requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2017run_test "Truncated HMAC: client disabled, server default" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]2018 "$P_SRV debug_level=4" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]2019 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=0" \
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]2020 0 \
Hanno Becker992b6872017-11-09 18:57:39 +0000[diff] [blame]2021 -s "dumping 'expected mac' (20 bytes)" \
2022 -S "dumping 'expected mac' (10 bytes)"
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2023
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]2024requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2025run_test "Truncated HMAC: client enabled, server default" \
2026 "$P_SRV debug_level=4" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]2027 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2028 0 \
Hanno Becker992b6872017-11-09 18:57:39 +0000[diff] [blame]2029 -s "dumping 'expected mac' (20 bytes)" \
2030 -S "dumping 'expected mac' (10 bytes)"
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2031
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]2032requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2033run_test "Truncated HMAC: client enabled, server disabled" \
2034 "$P_SRV debug_level=4 trunc_hmac=0" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]2035 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2036 0 \
Hanno Becker992b6872017-11-09 18:57:39 +0000[diff] [blame]2037 -s "dumping 'expected mac' (20 bytes)" \
2038 -S "dumping 'expected mac' (10 bytes)"
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2039
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]2040requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Hanno Becker34d0c3f2017-11-17 15:46:24 +0000[diff] [blame]2041run_test "Truncated HMAC: client disabled, server enabled" \
2042 "$P_SRV debug_level=4 trunc_hmac=1" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]2043 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=0" \
Hanno Becker34d0c3f2017-11-17 15:46:24 +0000[diff] [blame]2044 0 \
2045 -s "dumping 'expected mac' (20 bytes)" \
2046 -S "dumping 'expected mac' (10 bytes)"
2047
2048requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2049run_test "Truncated HMAC: client enabled, server enabled" \
2050 "$P_SRV debug_level=4 trunc_hmac=1" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]2051 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnarde117a8f2015-01-09 12:39:35 +0100[diff] [blame]2052 0 \
Hanno Becker992b6872017-11-09 18:57:39 +0000[diff] [blame]2053 -S "dumping 'expected mac' (20 bytes)" \
2054 -s "dumping 'expected mac' (10 bytes)"
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]2055
Hanno Becker4c4f4102017-11-10 09:16:05 +0000[diff] [blame]2056run_test "Truncated HMAC, DTLS: client default, server default" \
2057 "$P_SRV dtls=1 debug_level=4" \
2058 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
2059 0 \
2060 -s "dumping 'expected mac' (20 bytes)" \
2061 -S "dumping 'expected mac' (10 bytes)"
2062
2063requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
2064run_test "Truncated HMAC, DTLS: client disabled, server default" \
2065 "$P_SRV dtls=1 debug_level=4" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]2066 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=0" \
Hanno Becker4c4f4102017-11-10 09:16:05 +0000[diff] [blame]2067 0 \
2068 -s "dumping 'expected mac' (20 bytes)" \
2069 -S "dumping 'expected mac' (10 bytes)"
2070
2071requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
2072run_test "Truncated HMAC, DTLS: client enabled, server default" \
2073 "$P_SRV dtls=1 debug_level=4" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]2074 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Hanno Becker4c4f4102017-11-10 09:16:05 +0000[diff] [blame]2075 0 \
2076 -s "dumping 'expected mac' (20 bytes)" \
2077 -S "dumping 'expected mac' (10 bytes)"
2078
2079requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
2080run_test "Truncated HMAC, DTLS: client enabled, server disabled" \
2081 "$P_SRV dtls=1 debug_level=4 trunc_hmac=0" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]2082 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Hanno Becker4c4f4102017-11-10 09:16:05 +0000[diff] [blame]2083 0 \
2084 -s "dumping 'expected mac' (20 bytes)" \
2085 -S "dumping 'expected mac' (10 bytes)"
2086
2087requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
2088run_test "Truncated HMAC, DTLS: client disabled, server enabled" \
2089 "$P_SRV dtls=1 debug_level=4 trunc_hmac=1" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]2090 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=0" \
Hanno Becker4c4f4102017-11-10 09:16:05 +0000[diff] [blame]2091 0 \
2092 -s "dumping 'expected mac' (20 bytes)" \
2093 -S "dumping 'expected mac' (10 bytes)"
2094
2095requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
2096run_test "Truncated HMAC, DTLS: client enabled, server enabled" \
2097 "$P_SRV dtls=1 debug_level=4 trunc_hmac=1" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]2098 "$P_CLI dtls=1 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]2099 0 \
2100 -S "dumping 'expected mac' (20 bytes)" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]2101 -s "dumping 'expected mac' (10 bytes)"
2102
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2103# Tests for Context serialization
2104
2105requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2106run_test "Context serialization, client serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]2107 "$P_SRV dtls=1 serialize=0 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2108 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2109 0 \
2110 -c "Deserializing connection..." \
2111 -S "Deserializing connection..."
2112
2113requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2114run_test "Context serialization, client serializes, ChaChaPoly" \
2115 "$P_SRV dtls=1 serialize=0 exchanges=2" \
2116 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2117 0 \
2118 -c "Deserializing connection..." \
2119 -S "Deserializing connection..."
2120
2121requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2122run_test "Context serialization, client serializes, GCM" \
2123 "$P_SRV dtls=1 serialize=0 exchanges=2" \
2124 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2125 0 \
Jarno Lamsacbee1b32019-06-04 15:18:19 +0300[diff] [blame]2126 -c "Deserializing connection..." \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2127 -S "Deserializing connection..."
2128
2129requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]2130requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
2131run_test "Context serialization, client serializes, with CID" \
2132 "$P_SRV dtls=1 serialize=0 exchanges=2 cid=1 cid_val=dead" \
2133 "$P_CLI dtls=1 serialize=1 exchanges=2 cid=1 cid_val=beef" \
2134 0 \
2135 -c "Deserializing connection..." \
2136 -S "Deserializing connection..."
2137
2138requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2139run_test "Context serialization, server serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]2140 "$P_SRV dtls=1 serialize=1 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2141 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2142 0 \
2143 -C "Deserializing connection..." \
2144 -s "Deserializing connection..."
2145
2146requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2147run_test "Context serialization, server serializes, ChaChaPoly" \
2148 "$P_SRV dtls=1 serialize=1 exchanges=2" \
2149 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2150 0 \
2151 -C "Deserializing connection..." \
2152 -s "Deserializing connection..."
2153
2154requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2155run_test "Context serialization, server serializes, GCM" \
2156 "$P_SRV dtls=1 serialize=1 exchanges=2" \
2157 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2158 0 \
Jarno Lamsacbee1b32019-06-04 15:18:19 +0300[diff] [blame]2159 -C "Deserializing connection..." \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2160 -s "Deserializing connection..."
2161
2162requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]2163requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
2164run_test "Context serialization, server serializes, with CID" \
2165 "$P_SRV dtls=1 serialize=1 exchanges=2 cid=1 cid_val=dead" \
2166 "$P_CLI dtls=1 serialize=0 exchanges=2 cid=1 cid_val=beef" \
2167 0 \
2168 -C "Deserializing connection..." \
2169 -s "Deserializing connection..."
2170
2171requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2172run_test "Context serialization, both serialize, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]2173 "$P_SRV dtls=1 serialize=1 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2174 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2175 0 \
2176 -c "Deserializing connection..." \
2177 -s "Deserializing connection..."
2178
2179requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2180run_test "Context serialization, both serialize, ChaChaPoly" \
2181 "$P_SRV dtls=1 serialize=1 exchanges=2" \
2182 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2183 0 \
2184 -c "Deserializing connection..." \
2185 -s "Deserializing connection..."
2186
2187requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2188run_test "Context serialization, both serialize, GCM" \
2189 "$P_SRV dtls=1 serialize=1 exchanges=2" \
2190 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2191 0 \
Jarno Lamsacbee1b32019-06-04 15:18:19 +0300[diff] [blame]2192 -c "Deserializing connection..." \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2193 -s "Deserializing connection..."
2194
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]2195requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]2196requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
2197run_test "Context serialization, both serialize, with CID" \
2198 "$P_SRV dtls=1 serialize=1 exchanges=2 cid=1 cid_val=dead" \
2199 "$P_CLI dtls=1 serialize=1 exchanges=2 cid=1 cid_val=beef" \
2200 0 \
2201 -c "Deserializing connection..." \
2202 -s "Deserializing connection..."
2203
2204requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2205run_test "Context serialization, re-init, client serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]2206 "$P_SRV dtls=1 serialize=0 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2207 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2208 0 \
2209 -c "Deserializing connection..." \
2210 -S "Deserializing connection..."
2211
2212requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2213run_test "Context serialization, re-init, client serializes, ChaChaPoly" \
2214 "$P_SRV dtls=1 serialize=0 exchanges=2" \
2215 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2216 0 \
2217 -c "Deserializing connection..." \
2218 -S "Deserializing connection..."
2219
2220requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2221run_test "Context serialization, re-init, client serializes, GCM" \
2222 "$P_SRV dtls=1 serialize=0 exchanges=2" \
2223 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]2224 0 \
2225 -c "Deserializing connection..." \
2226 -S "Deserializing connection..."
2227
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]2228requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]2229requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
2230run_test "Context serialization, re-init, client serializes, with CID" \
2231 "$P_SRV dtls=1 serialize=0 exchanges=2 cid=1 cid_val=dead" \
2232 "$P_CLI dtls=1 serialize=2 exchanges=2 cid=1 cid_val=beef" \
2233 0 \
2234 -c "Deserializing connection..." \
2235 -S "Deserializing connection..."
2236
2237requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2238run_test "Context serialization, re-init, server serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]2239 "$P_SRV dtls=1 serialize=2 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2240 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2241 0 \
2242 -C "Deserializing connection..." \
2243 -s "Deserializing connection..."
2244
2245requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2246run_test "Context serialization, re-init, server serializes, ChaChaPoly" \
2247 "$P_SRV dtls=1 serialize=2 exchanges=2" \
2248 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2249 0 \
2250 -C "Deserializing connection..." \
2251 -s "Deserializing connection..."
2252
2253requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2254run_test "Context serialization, re-init, server serializes, GCM" \
2255 "$P_SRV dtls=1 serialize=2 exchanges=2" \
2256 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]2257 0 \
2258 -C "Deserializing connection..." \
2259 -s "Deserializing connection..."
2260
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]2261requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]2262requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
2263run_test "Context serialization, re-init, server serializes, with CID" \
2264 "$P_SRV dtls=1 serialize=2 exchanges=2 cid=1 cid_val=dead" \
2265 "$P_CLI dtls=1 serialize=0 exchanges=2 cid=1 cid_val=beef" \
2266 0 \
2267 -C "Deserializing connection..." \
2268 -s "Deserializing connection..."
2269
2270requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2271run_test "Context serialization, re-init, both serialize, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]2272 "$P_SRV dtls=1 serialize=2 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2273 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2274 0 \
2275 -c "Deserializing connection..." \
2276 -s "Deserializing connection..."
2277
2278requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2279run_test "Context serialization, re-init, both serialize, ChaChaPoly" \
2280 "$P_SRV dtls=1 serialize=2 exchanges=2" \
2281 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2282 0 \
2283 -c "Deserializing connection..." \
2284 -s "Deserializing connection..."
2285
2286requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2287run_test "Context serialization, re-init, both serialize, GCM" \
2288 "$P_SRV dtls=1 serialize=2 exchanges=2" \
2289 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]2290 0 \
2291 -c "Deserializing connection..." \
2292 -s "Deserializing connection..."
2293
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]2294requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2295requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
2296run_test "Context serialization, re-init, both serialize, with CID" \
2297 "$P_SRV dtls=1 serialize=2 exchanges=2 cid=1 cid_val=dead" \
2298 "$P_CLI dtls=1 serialize=2 exchanges=2 cid=1 cid_val=beef" \
2299 0 \
2300 -c "Deserializing connection..." \
2301 -s "Deserializing connection..."
2302
Piotr Nowicki3de298f2020-04-16 14:35:19 +0200[diff] [blame]2303requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2304run_test "Saving the serialized context to a file" \
2305 "$P_SRV dtls=1 serialize=1 context_file=context_srv.txt" \
2306 "$P_CLI dtls=1 serialize=1 context_file=context_cli.txt" \
2307 0 \
2308 -s "Save serialized context to a file... ok" \
2309 -c "Save serialized context to a file... ok"
2310rm -f context_srv.txt
2311rm -f context_cli.txt
2312
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2313# Tests for DTLS Connection ID extension
2314
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2315# So far, the CID API isn't implemented, so we can't
2316# grep for output witnessing its use. This needs to be
2317# changed once the CID extension is implemented.
2318
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2319requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2320run_test "Connection ID: Cli enabled, Srv disabled" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2321 "$P_SRV debug_level=3 dtls=1 cid=0" \
2322 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
2323 0 \
2324 -s "Disable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2325 -s "found CID extension" \
2326 -s "Client sent CID extension, but CID disabled" \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2327 -c "Enable use of CID extension." \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2328 -c "client hello, adding CID extension" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2329 -S "server hello, adding CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2330 -C "found CID extension" \
2331 -S "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]2332 -C "Copy CIDs into SSL transform" \
2333 -c "Use of Connection ID was rejected by the server"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2334
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2335requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2336run_test "Connection ID: Cli disabled, Srv enabled" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2337 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
2338 "$P_CLI debug_level=3 dtls=1 cid=0" \
2339 0 \
2340 -c "Disable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2341 -C "client hello, adding CID extension" \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2342 -S "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2343 -s "Enable use of CID extension." \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2344 -S "server hello, adding CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2345 -C "found CID extension" \
2346 -S "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]2347 -C "Copy CIDs into SSL transform" \
Hanno Beckerb3e9dd52019-05-08 13:19:53 +0100[diff] [blame]2348 -s "Use of Connection ID was not offered by client"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2349
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2350requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2351run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID nonempty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2352 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead" \
2353 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef" \
2354 0 \
2355 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2356 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2357 -c "client hello, adding CID extension" \
2358 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2359 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2360 -s "server hello, adding CID extension" \
2361 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2362 -c "Use of CID extension negotiated" \
2363 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]2364 -c "Copy CIDs into SSL transform" \
2365 -c "Peer CID (length 2 Bytes): de ad" \
2366 -s "Peer CID (length 2 Bytes): be ef" \
2367 -s "Use of Connection ID has been negotiated" \
2368 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2369
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2370requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2371run_test "Connection ID, 3D: Cli+Srv enabled, Cli+Srv CID nonempty" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2372 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2373 "$P_SRV debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=dead" \
2374 "$P_CLI debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=beef" \
2375 0 \
2376 -c "Enable use of CID extension." \
2377 -s "Enable use of CID extension." \
2378 -c "client hello, adding CID extension" \
2379 -s "found CID extension" \
2380 -s "Use of CID extension negotiated" \
2381 -s "server hello, adding CID extension" \
2382 -c "found CID extension" \
2383 -c "Use of CID extension negotiated" \
2384 -s "Copy CIDs into SSL transform" \
2385 -c "Copy CIDs into SSL transform" \
2386 -c "Peer CID (length 2 Bytes): de ad" \
2387 -s "Peer CID (length 2 Bytes): be ef" \
2388 -s "Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2389 -c "Use of Connection ID has been negotiated" \
2390 -c "ignoring unexpected CID" \
2391 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2392
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2393requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2394run_test "Connection ID, MTU: Cli+Srv enabled, Cli+Srv CID nonempty" \
2395 -p "$P_PXY mtu=800" \
2396 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead" \
2397 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef" \
2398 0 \
2399 -c "Enable use of CID extension." \
2400 -s "Enable use of CID extension." \
2401 -c "client hello, adding CID extension" \
2402 -s "found CID extension" \
2403 -s "Use of CID extension negotiated" \
2404 -s "server hello, adding CID extension" \
2405 -c "found CID extension" \
2406 -c "Use of CID extension negotiated" \
2407 -s "Copy CIDs into SSL transform" \
2408 -c "Copy CIDs into SSL transform" \
2409 -c "Peer CID (length 2 Bytes): de ad" \
2410 -s "Peer CID (length 2 Bytes): be ef" \
2411 -s "Use of Connection ID has been negotiated" \
2412 -c "Use of Connection ID has been negotiated"
2413
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2414requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2415run_test "Connection ID, 3D+MTU: Cli+Srv enabled, Cli+Srv CID nonempty" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2416 -p "$P_PXY mtu=800 drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2417 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead" \
2418 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef" \
2419 0 \
2420 -c "Enable use of CID extension." \
2421 -s "Enable use of CID extension." \
2422 -c "client hello, adding CID extension" \
2423 -s "found CID extension" \
2424 -s "Use of CID extension negotiated" \
2425 -s "server hello, adding CID extension" \
2426 -c "found CID extension" \
2427 -c "Use of CID extension negotiated" \
2428 -s "Copy CIDs into SSL transform" \
2429 -c "Copy CIDs into SSL transform" \
2430 -c "Peer CID (length 2 Bytes): de ad" \
2431 -s "Peer CID (length 2 Bytes): be ef" \
2432 -s "Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2433 -c "Use of Connection ID has been negotiated" \
2434 -c "ignoring unexpected CID" \
2435 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2436
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2437requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2438run_test "Connection ID: Cli+Srv enabled, Cli CID empty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2439 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
2440 "$P_CLI debug_level=3 dtls=1 cid=1" \
2441 0 \
2442 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2443 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2444 -c "client hello, adding CID extension" \
2445 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2446 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2447 -s "server hello, adding CID extension" \
2448 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2449 -c "Use of CID extension negotiated" \
2450 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]2451 -c "Copy CIDs into SSL transform" \
2452 -c "Peer CID (length 4 Bytes): de ad be ef" \
2453 -s "Peer CID (length 0 Bytes):" \
2454 -s "Use of Connection ID has been negotiated" \
2455 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2456
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2457requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2458run_test "Connection ID: Cli+Srv enabled, Srv CID empty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2459 "$P_SRV debug_level=3 dtls=1 cid=1" \
2460 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
2461 0 \
2462 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2463 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2464 -c "client hello, adding CID extension" \
2465 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2466 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2467 -s "server hello, adding CID extension" \
2468 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2469 -c "Use of CID extension negotiated" \
2470 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]2471 -c "Copy CIDs into SSL transform" \
2472 -s "Peer CID (length 4 Bytes): de ad be ef" \
2473 -c "Peer CID (length 0 Bytes):" \
2474 -s "Use of Connection ID has been negotiated" \
2475 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2476
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2477requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2478run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID empty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2479 "$P_SRV debug_level=3 dtls=1 cid=1" \
2480 "$P_CLI debug_level=3 dtls=1 cid=1" \
2481 0 \
2482 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2483 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2484 -c "client hello, adding CID extension" \
2485 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2486 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2487 -s "server hello, adding CID extension" \
2488 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2489 -c "Use of CID extension negotiated" \
2490 -s "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]2491 -c "Copy CIDs into SSL transform" \
2492 -S "Use of Connection ID has been negotiated" \
2493 -C "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2494
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2495requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2496run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID nonempty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2497 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead" \
2498 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2499 0 \
2500 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2501 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2502 -c "client hello, adding CID extension" \
2503 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2504 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2505 -s "server hello, adding CID extension" \
2506 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2507 -c "Use of CID extension negotiated" \
2508 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]2509 -c "Copy CIDs into SSL transform" \
2510 -c "Peer CID (length 2 Bytes): de ad" \
2511 -s "Peer CID (length 2 Bytes): be ef" \
2512 -s "Use of Connection ID has been negotiated" \
2513 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2514
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2515requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2516run_test "Connection ID: Cli+Srv enabled, Cli CID empty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2517 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
2518 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2519 0 \
2520 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2521 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2522 -c "client hello, adding CID extension" \
2523 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2524 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2525 -s "server hello, adding CID extension" \
2526 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2527 -c "Use of CID extension negotiated" \
2528 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]2529 -c "Copy CIDs into SSL transform" \
2530 -c "Peer CID (length 4 Bytes): de ad be ef" \
2531 -s "Peer CID (length 0 Bytes):" \
2532 -s "Use of Connection ID has been negotiated" \
2533 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2534
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2535requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2536run_test "Connection ID: Cli+Srv enabled, Srv CID empty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2537 "$P_SRV debug_level=3 dtls=1 cid=1" \
2538 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2539 0 \
2540 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2541 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2542 -c "client hello, adding CID extension" \
2543 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2544 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2545 -s "server hello, adding CID extension" \
2546 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2547 -c "Use of CID extension negotiated" \
2548 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]2549 -c "Copy CIDs into SSL transform" \
2550 -s "Peer CID (length 4 Bytes): de ad be ef" \
2551 -c "Peer CID (length 0 Bytes):" \
2552 -s "Use of Connection ID has been negotiated" \
2553 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2554
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2555requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2556run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID empty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2557 "$P_SRV debug_level=3 dtls=1 cid=1" \
2558 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2559 0 \
2560 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2561 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2562 -c "client hello, adding CID extension" \
2563 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2564 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2565 -s "server hello, adding CID extension" \
2566 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2567 -c "Use of CID extension negotiated" \
2568 -s "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]2569 -c "Copy CIDs into SSL transform" \
2570 -S "Use of Connection ID has been negotiated" \
2571 -C "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2572
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2573requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2574run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID nonempty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2575 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead" \
2576 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
2577 0 \
2578 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2579 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2580 -c "client hello, adding CID extension" \
2581 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2582 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2583 -s "server hello, adding CID extension" \
2584 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2585 -c "Use of CID extension negotiated" \
2586 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]2587 -c "Copy CIDs into SSL transform" \
2588 -c "Peer CID (length 2 Bytes): de ad" \
2589 -s "Peer CID (length 2 Bytes): be ef" \
2590 -s "Use of Connection ID has been negotiated" \
2591 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2592
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2593requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2594run_test "Connection ID: Cli+Srv enabled, Cli CID empty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2595 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
2596 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
2597 0 \
2598 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2599 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2600 -c "client hello, adding CID extension" \
2601 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2602 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2603 -s "server hello, adding CID extension" \
2604 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2605 -c "Use of CID extension negotiated" \
2606 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]2607 -c "Copy CIDs into SSL transform" \
2608 -c "Peer CID (length 4 Bytes): de ad be ef" \
2609 -s "Peer CID (length 0 Bytes):" \
2610 -s "Use of Connection ID has been negotiated" \
2611 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2612
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2613requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2614run_test "Connection ID: Cli+Srv enabled, Srv CID empty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2615 "$P_SRV debug_level=3 dtls=1 cid=1" \
2616 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
2617 0 \
2618 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2619 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2620 -c "client hello, adding CID extension" \
2621 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2622 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2623 -s "server hello, adding CID extension" \
2624 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2625 -c "Use of CID extension negotiated" \
2626 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]2627 -c "Copy CIDs into SSL transform" \
2628 -s "Peer CID (length 4 Bytes): de ad be ef" \
2629 -c "Peer CID (length 0 Bytes):" \
2630 -s "Use of Connection ID has been negotiated" \
2631 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2632
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2633requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2634run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID empty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2635 "$P_SRV debug_level=3 dtls=1 cid=1" \
2636 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
2637 0 \
2638 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]2639 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]2640 -c "client hello, adding CID extension" \
2641 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]2642 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]2643 -s "server hello, adding CID extension" \
2644 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]2645 -c "Use of CID extension negotiated" \
2646 -s "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]2647 -c "Copy CIDs into SSL transform" \
2648 -S "Use of Connection ID has been negotiated" \
2649 -C "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2650
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2651requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker9bae30d2019-04-23 11:52:44 +0100[diff] [blame]2652requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2653run_test "Connection ID: Cli+Srv enabled, renegotiate without change of CID" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]2654 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead renegotiation=1" \
2655 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef renegotiation=1 renegotiate=1" \
2656 0 \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2657 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2658 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2659 -s "(initial handshake) Use of Connection ID has been negotiated" \
2660 -c "(initial handshake) Use of Connection ID has been negotiated" \
2661 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2662 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2663 -s "(after renegotiation) Use of Connection ID has been negotiated" \
2664 -c "(after renegotiation) Use of Connection ID has been negotiated"
2665
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2666requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2667requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2668run_test "Connection ID: Cli+Srv enabled, renegotiate with different CID" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2669 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_val_renego=beef renegotiation=1" \
2670 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_val_renego=dead renegotiation=1 renegotiate=1" \
2671 0 \
2672 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2673 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2674 -s "(initial handshake) Use of Connection ID has been negotiated" \
2675 -c "(initial handshake) Use of Connection ID has been negotiated" \
2676 -c "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2677 -s "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2678 -s "(after renegotiation) Use of Connection ID has been negotiated" \
2679 -c "(after renegotiation) Use of Connection ID has been negotiated"
2680
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2681requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2682requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]2683run_test "Connection ID, no packing: Cli+Srv enabled, renegotiate with different CID" \
2684 "$P_SRV debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=dead cid_val_renego=beef renegotiation=1" \
2685 "$P_CLI debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=beef cid_val_renego=dead renegotiation=1 renegotiate=1" \
2686 0 \
2687 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2688 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2689 -s "(initial handshake) Use of Connection ID has been negotiated" \
2690 -c "(initial handshake) Use of Connection ID has been negotiated" \
2691 -c "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2692 -s "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2693 -s "(after renegotiation) Use of Connection ID has been negotiated" \
2694 -c "(after renegotiation) Use of Connection ID has been negotiated"
2695
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2696requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]2697requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2698run_test "Connection ID, 3D+MTU: Cli+Srv enabled, renegotiate with different CID" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2699 -p "$P_PXY mtu=800 drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2700 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead cid_val_renego=beef renegotiation=1" \
2701 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef cid_val_renego=dead renegotiation=1 renegotiate=1" \
2702 0 \
2703 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2704 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2705 -s "(initial handshake) Use of Connection ID has been negotiated" \
2706 -c "(initial handshake) Use of Connection ID has been negotiated" \
2707 -c "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2708 -s "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2709 -s "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2710 -c "(after renegotiation) Use of Connection ID has been negotiated" \
2711 -c "ignoring unexpected CID" \
2712 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2713
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2714requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2715requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
2716run_test "Connection ID: Cli+Srv enabled, renegotiate without CID" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2717 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
2718 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
2719 0 \
2720 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2721 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2722 -s "(initial handshake) Use of Connection ID has been negotiated" \
2723 -c "(initial handshake) Use of Connection ID has been negotiated" \
2724 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2725 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2726 -C "(after renegotiation) Use of Connection ID has been negotiated" \
2727 -S "(after renegotiation) Use of Connection ID has been negotiated"
2728
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2729requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2730requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]2731run_test "Connection ID, no packing: Cli+Srv enabled, renegotiate without CID" \
2732 "$P_SRV debug_level=3 dtls=1 dgram_packing=0 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
2733 "$P_CLI debug_level=3 dtls=1 dgram_packing=0 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
2734 0 \
2735 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2736 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2737 -s "(initial handshake) Use of Connection ID has been negotiated" \
2738 -c "(initial handshake) Use of Connection ID has been negotiated" \
2739 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2740 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2741 -C "(after renegotiation) Use of Connection ID has been negotiated" \
2742 -S "(after renegotiation) Use of Connection ID has been negotiated"
2743
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2744requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]2745requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2746run_test "Connection ID, 3D+MTU: Cli+Srv enabled, renegotiate without CID" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2747 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2748 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
2749 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
2750 0 \
2751 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2752 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2753 -s "(initial handshake) Use of Connection ID has been negotiated" \
2754 -c "(initial handshake) Use of Connection ID has been negotiated" \
2755 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2756 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2757 -C "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2758 -S "(after renegotiation) Use of Connection ID has been negotiated" \
2759 -c "ignoring unexpected CID" \
2760 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2761
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2762requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2763requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
2764run_test "Connection ID: Cli+Srv enabled, CID on renegotiation" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2765 "$P_SRV debug_level=3 dtls=1 cid=0 cid_renego=1 cid_val_renego=dead renegotiation=1" \
2766 "$P_CLI debug_level=3 dtls=1 cid=0 cid_renego=1 cid_val_renego=beef renegotiation=1 renegotiate=1" \
2767 0 \
2768 -S "(initial handshake) Use of Connection ID has been negotiated" \
2769 -C "(initial handshake) Use of Connection ID has been negotiated" \
2770 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2771 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2772 -c "(after renegotiation) Use of Connection ID has been negotiated" \
2773 -s "(after renegotiation) Use of Connection ID has been negotiated"
2774
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2775requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2776requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]2777run_test "Connection ID, no packing: Cli+Srv enabled, CID on renegotiation" \
2778 "$P_SRV debug_level=3 dtls=1 dgram_packing=0 cid=0 cid_renego=1 cid_val_renego=dead renegotiation=1" \
2779 "$P_CLI debug_level=3 dtls=1 dgram_packing=0 cid=0 cid_renego=1 cid_val_renego=beef renegotiation=1 renegotiate=1" \
2780 0 \
2781 -S "(initial handshake) Use of Connection ID has been negotiated" \
2782 -C "(initial handshake) Use of Connection ID has been negotiated" \
2783 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2784 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2785 -c "(after renegotiation) Use of Connection ID has been negotiated" \
2786 -s "(after renegotiation) Use of Connection ID has been negotiated"
2787
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2788requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]2789requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2790run_test "Connection ID, 3D+MTU: Cli+Srv enabled, CID on renegotiation" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2791 -p "$P_PXY mtu=800 drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2792 "$P_SRV debug_level=3 mtu=800 dtls=1 dgram_packing=1 cid=0 cid_renego=1 cid_val_renego=dead renegotiation=1" \
2793 "$P_CLI debug_level=3 mtu=800 dtls=1 dgram_packing=1 cid=0 cid_renego=1 cid_val_renego=beef renegotiation=1 renegotiate=1" \
2794 0 \
2795 -S "(initial handshake) Use of Connection ID has been negotiated" \
2796 -C "(initial handshake) Use of Connection ID has been negotiated" \
2797 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2798 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2799 -c "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2800 -s "(after renegotiation) Use of Connection ID has been negotiated" \
2801 -c "ignoring unexpected CID" \
2802 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2803
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2804requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2805requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
2806run_test "Connection ID: Cli+Srv enabled, Cli disables on renegotiation" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2807 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead renegotiation=1" \
2808 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
2809 0 \
2810 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2811 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2812 -s "(initial handshake) Use of Connection ID has been negotiated" \
2813 -c "(initial handshake) Use of Connection ID has been negotiated" \
2814 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2815 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2816 -C "(after renegotiation) Use of Connection ID has been negotiated" \
2817 -S "(after renegotiation) Use of Connection ID has been negotiated" \
2818 -s "(after renegotiation) Use of Connection ID was not offered by client"
2819
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2820requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2821requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2822run_test "Connection ID, 3D: Cli+Srv enabled, Cli disables on renegotiation" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2823 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2824 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead renegotiation=1" \
2825 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
2826 0 \
2827 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2828 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2829 -s "(initial handshake) Use of Connection ID has been negotiated" \
2830 -c "(initial handshake) Use of Connection ID has been negotiated" \
2831 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2832 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2833 -C "(after renegotiation) Use of Connection ID has been negotiated" \
2834 -S "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2835 -s "(after renegotiation) Use of Connection ID was not offered by client" \
2836 -c "ignoring unexpected CID" \
2837 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2838
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2839requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2840requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
2841run_test "Connection ID: Cli+Srv enabled, Srv disables on renegotiation" \
2842 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
2843 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef renegotiation=1 renegotiate=1" \
2844 0 \
2845 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2846 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2847 -s "(initial handshake) Use of Connection ID has been negotiated" \
2848 -c "(initial handshake) Use of Connection ID has been negotiated" \
2849 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2850 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2851 -C "(after renegotiation) Use of Connection ID has been negotiated" \
2852 -S "(after renegotiation) Use of Connection ID has been negotiated" \
2853 -c "(after renegotiation) Use of Connection ID was rejected by the server"
2854
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]2855requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]2856requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
2857run_test "Connection ID, 3D: Cli+Srv enabled, Srv disables on renegotiation" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2858 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]2859 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
2860 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef renegotiation=1 renegotiate=1" \
2861 0 \
2862 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2863 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2864 -s "(initial handshake) Use of Connection ID has been negotiated" \
2865 -c "(initial handshake) Use of Connection ID has been negotiated" \
2866 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
2867 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
2868 -C "(after renegotiation) Use of Connection ID has been negotiated" \
2869 -S "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]2870 -c "(after renegotiation) Use of Connection ID was rejected by the server" \
2871 -c "ignoring unexpected CID" \
2872 -s "ignoring unexpected CID"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]2873
Yuto Takano71879532021-07-09 11:32:38 +0100[diff] [blame]2874# This and the test below it require MAX_CONTENT_LEN to be at least MFL+1, because the
2875# tests check that the buffer contents are reallocated when the message is
2876# larger than the buffer.
Andrzej Kurekb6577832020-06-08 07:08:03 -0400[diff] [blame]2877requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
2878requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
Yuto Takano71879532021-07-09 11:32:38 +0100[diff] [blame]2879requires_max_content_len 513
Andrzej Kurekb6577832020-06-08 07:08:03 -0400[diff] [blame]2880run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=512" \
2881 "$P_SRV dtls=1 cid=1 cid_val=dead debug_level=2" \
2882 "$P_CLI force_ciphersuite="TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" max_frag_len=512 dtls=1 cid=1 cid_val=beef" \
2883 0 \
2884 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2885 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2886 -s "(initial handshake) Use of Connection ID has been negotiated" \
2887 -c "(initial handshake) Use of Connection ID has been negotiated" \
2888 -s "Reallocating in_buf" \
2889 -s "Reallocating out_buf"
2890
2891requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
2892requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
Yuto Takano71879532021-07-09 11:32:38 +0100[diff] [blame]2893requires_max_content_len 1025
Andrzej Kurekb6577832020-06-08 07:08:03 -0400[diff] [blame]2894run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=1024" \
2895 "$P_SRV dtls=1 cid=1 cid_val=dead debug_level=2" \
2896 "$P_CLI force_ciphersuite="TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" max_frag_len=1024 dtls=1 cid=1 cid_val=beef" \
2897 0 \
2898 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
2899 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
2900 -s "(initial handshake) Use of Connection ID has been negotiated" \
2901 -c "(initial handshake) Use of Connection ID has been negotiated" \
2902 -s "Reallocating in_buf" \
2903 -s "Reallocating out_buf"
2904
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]2905# Tests for Encrypt-then-MAC extension
2906
2907run_test "Encrypt then MAC: default" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]2908 "$P_SRV debug_level=3 \
2909 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]2910 "$P_CLI debug_level=3" \
2911 0 \
2912 -c "client hello, adding encrypt_then_mac extension" \
2913 -s "found encrypt then mac extension" \
2914 -s "server hello, adding encrypt then mac extension" \
2915 -c "found encrypt_then_mac extension" \
2916 -c "using encrypt then mac" \
2917 -s "using encrypt then mac"
2918
2919run_test "Encrypt then MAC: client enabled, server disabled" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]2920 "$P_SRV debug_level=3 etm=0 \
2921 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]2922 "$P_CLI debug_level=3 etm=1" \
2923 0 \
2924 -c "client hello, adding encrypt_then_mac extension" \
2925 -s "found encrypt then mac extension" \
2926 -S "server hello, adding encrypt then mac extension" \
2927 -C "found encrypt_then_mac extension" \
2928 -C "using encrypt then mac" \
2929 -S "using encrypt then mac"
2930
Manuel Pégourié-Gonnard78e745f2014-11-04 15:44:06 +0100[diff] [blame]2931run_test "Encrypt then MAC: client enabled, aead cipher" \
2932 "$P_SRV debug_level=3 etm=1 \
2933 force_ciphersuite=TLS-RSA-WITH-AES-128-GCM-SHA256" \
2934 "$P_CLI debug_level=3 etm=1" \
2935 0 \
2936 -c "client hello, adding encrypt_then_mac extension" \
2937 -s "found encrypt then mac extension" \
2938 -S "server hello, adding encrypt then mac extension" \
2939 -C "found encrypt_then_mac extension" \
2940 -C "using encrypt then mac" \
2941 -S "using encrypt then mac"
2942
2943run_test "Encrypt then MAC: client enabled, stream cipher" \
2944 "$P_SRV debug_level=3 etm=1 \
2945 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]2946 "$P_CLI debug_level=3 etm=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard78e745f2014-11-04 15:44:06 +0100[diff] [blame]2947 0 \
2948 -c "client hello, adding encrypt_then_mac extension" \
2949 -s "found encrypt then mac extension" \
2950 -S "server hello, adding encrypt then mac extension" \
2951 -C "found encrypt_then_mac extension" \
2952 -C "using encrypt then mac" \
2953 -S "using encrypt then mac"
2954
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]2955run_test "Encrypt then MAC: client disabled, server enabled" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]2956 "$P_SRV debug_level=3 etm=1 \
2957 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]2958 "$P_CLI debug_level=3 etm=0" \
2959 0 \
2960 -C "client hello, adding encrypt_then_mac extension" \
2961 -S "found encrypt then mac extension" \
2962 -S "server hello, adding encrypt then mac extension" \
2963 -C "found encrypt_then_mac extension" \
2964 -C "using encrypt then mac" \
2965 -S "using encrypt then mac"
2966
2967run_test "Encrypt then MAC: client SSLv3, server enabled" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]2968 "$P_SRV debug_level=3 min_version=ssl3 \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]2969 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]2970 "$P_CLI debug_level=3 force_version=ssl3" \
2971 0 \
2972 -C "client hello, adding encrypt_then_mac extension" \
2973 -S "found encrypt then mac extension" \
2974 -S "server hello, adding encrypt then mac extension" \
2975 -C "found encrypt_then_mac extension" \
2976 -C "using encrypt then mac" \
2977 -S "using encrypt then mac"
2978
2979run_test "Encrypt then MAC: client enabled, server SSLv3" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]2980 "$P_SRV debug_level=3 force_version=ssl3 \
2981 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]2982 "$P_CLI debug_level=3 min_version=ssl3" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]2983 0 \
2984 -c "client hello, adding encrypt_then_mac extension" \
Janos Follath00efff72016-05-06 13:48:23 +0100[diff] [blame]2985 -S "found encrypt then mac extension" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]2986 -S "server hello, adding encrypt then mac extension" \
2987 -C "found encrypt_then_mac extension" \
2988 -C "using encrypt then mac" \
2989 -S "using encrypt then mac"
2990
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]2991# Tests for Extended Master Secret extension
2992
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]2993requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]2994run_test "Extended Master Secret: default" \
2995 "$P_SRV debug_level=3" \
2996 "$P_CLI debug_level=3" \
2997 0 \
2998 -c "client hello, adding extended_master_secret extension" \
2999 -s "found extended master secret extension" \
3000 -s "server hello, adding extended master secret extension" \
3001 -c "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3002 -c "session hash for extended master secret" \
3003 -s "session hash for extended master secret"
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3004
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3005requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3006run_test "Extended Master Secret: client enabled, server disabled" \
3007 "$P_SRV debug_level=3 extended_ms=0" \
3008 "$P_CLI debug_level=3 extended_ms=1" \
3009 0 \
3010 -c "client hello, adding extended_master_secret extension" \
3011 -s "found extended master secret extension" \
3012 -S "server hello, adding extended master secret extension" \
3013 -C "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3014 -C "session hash for extended master secret" \
3015 -S "session hash for extended master secret"
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3016
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3017requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3018run_test "Extended Master Secret: client disabled, server enabled" \
3019 "$P_SRV debug_level=3 extended_ms=1" \
3020 "$P_CLI debug_level=3 extended_ms=0" \
3021 0 \
3022 -C "client hello, adding extended_master_secret extension" \
3023 -S "found extended master secret extension" \
3024 -S "server hello, adding extended master secret extension" \
3025 -C "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3026 -C "session hash for extended master secret" \
3027 -S "session hash for extended master secret"
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3028
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]3029run_test "Extended Master Secret: client SSLv3, server enabled" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]3030 "$P_SRV debug_level=3 min_version=ssl3" \
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]3031 "$P_CLI debug_level=3 force_version=ssl3" \
3032 0 \
3033 -C "client hello, adding extended_master_secret extension" \
3034 -S "found extended master secret extension" \
3035 -S "server hello, adding extended master secret extension" \
3036 -C "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3037 -C "session hash for extended master secret" \
3038 -S "session hash for extended master secret"
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]3039
3040run_test "Extended Master Secret: client enabled, server SSLv3" \
3041 "$P_SRV debug_level=3 force_version=ssl3" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]3042 "$P_CLI debug_level=3 min_version=ssl3" \
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]3043 0 \
3044 -c "client hello, adding extended_master_secret extension" \
Janos Follath00efff72016-05-06 13:48:23 +0100[diff] [blame]3045 -S "found extended master secret extension" \
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]3046 -S "server hello, adding extended master secret extension" \
3047 -C "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3048 -C "session hash for extended master secret" \
3049 -S "session hash for extended master secret"
Manuel Pégourié-Gonnardb575b542014-10-24 15:12:31 +0200[diff] [blame]3050
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]3051# Tests for FALLBACK_SCSV
3052
3053run_test "Fallback SCSV: default" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]3054 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]3055 "$P_CLI debug_level=3 force_version=tls1_1" \
3056 0 \
3057 -C "adding FALLBACK_SCSV" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]3058 -S "received FALLBACK_SCSV" \
3059 -S "inapropriate fallback" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]3060 -C "is a fatal alert message (msg 86)"
3061
3062run_test "Fallback SCSV: explicitly disabled" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]3063 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]3064 "$P_CLI debug_level=3 force_version=tls1_1 fallback=0" \
3065 0 \
3066 -C "adding FALLBACK_SCSV" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]3067 -S "received FALLBACK_SCSV" \
3068 -S "inapropriate fallback" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]3069 -C "is a fatal alert message (msg 86)"
3070
3071run_test "Fallback SCSV: enabled" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]3072 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]3073 "$P_CLI debug_level=3 force_version=tls1_1 fallback=1" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]3074 1 \
3075 -c "adding FALLBACK_SCSV" \
3076 -s "received FALLBACK_SCSV" \
3077 -s "inapropriate fallback" \
3078 -c "is a fatal alert message (msg 86)"
3079
3080run_test "Fallback SCSV: enabled, max version" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]3081 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]3082 "$P_CLI debug_level=3 fallback=1" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]3083 0 \
3084 -c "adding FALLBACK_SCSV" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]3085 -s "received FALLBACK_SCSV" \
3086 -S "inapropriate fallback" \
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]3087 -C "is a fatal alert message (msg 86)"
3088
3089requires_openssl_with_fallback_scsv
3090run_test "Fallback SCSV: default, openssl server" \
3091 "$O_SRV" \
3092 "$P_CLI debug_level=3 force_version=tls1_1 fallback=0" \
3093 0 \
3094 -C "adding FALLBACK_SCSV" \
3095 -C "is a fatal alert message (msg 86)"
3096
3097requires_openssl_with_fallback_scsv
3098run_test "Fallback SCSV: enabled, openssl server" \
3099 "$O_SRV" \
3100 "$P_CLI debug_level=3 force_version=tls1_1 fallback=1" \
3101 1 \
3102 -c "adding FALLBACK_SCSV" \
3103 -c "is a fatal alert message (msg 86)"
3104
Gilles Peskineadd21ad2022-04-15 15:14:58 +0200[diff] [blame]3105requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]3106requires_openssl_with_fallback_scsv
3107run_test "Fallback SCSV: disabled, openssl client" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]3108 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]3109 "$O_CLI -tls1_1" \
3110 0 \
3111 -S "received FALLBACK_SCSV" \
3112 -S "inapropriate fallback"
3113
Gilles Peskineadd21ad2022-04-15 15:14:58 +0200[diff] [blame]3114requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]3115requires_openssl_with_fallback_scsv
3116run_test "Fallback SCSV: enabled, openssl client" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]3117 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]3118 "$O_CLI -tls1_1 -fallback_scsv" \
3119 1 \
3120 -s "received FALLBACK_SCSV" \
3121 -s "inapropriate fallback"
3122
3123requires_openssl_with_fallback_scsv
3124run_test "Fallback SCSV: enabled, max version, openssl client" \
Manuel Pégourié-Gonnard4268ae02015-08-04 12:44:10 +0200[diff] [blame]3125 "$P_SRV debug_level=2" \
Manuel Pégourié-Gonnard01b26992014-10-20 14:05:28 +0200[diff] [blame]3126 "$O_CLI -fallback_scsv" \
3127 0 \
3128 -s "received FALLBACK_SCSV" \
3129 -S "inapropriate fallback"
3130
Andres Amaya Garcia4c761fa2018-07-10 20:08:04 +0100[diff] [blame]3131# Test sending and receiving empty application data records
3132
3133run_test "Encrypt then MAC: empty application data record" \
3134 "$P_SRV auth_mode=none debug_level=4 etm=1" \
3135 "$P_CLI auth_mode=none etm=1 request_size=0 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA" \
3136 0 \
3137 -S "0000: 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f" \
3138 -s "dumping 'input payload after decrypt' (0 bytes)" \
3139 -c "0 bytes written in 1 fragments"
3140
Manuel Pégourié-Gonnard9e2c80f2020-03-24 10:53:39 +0100[diff] [blame]3141run_test "Encrypt then MAC: disabled, empty application data record" \
Andres Amaya Garcia4c761fa2018-07-10 20:08:04 +0100[diff] [blame]3142 "$P_SRV auth_mode=none debug_level=4 etm=0" \
3143 "$P_CLI auth_mode=none etm=0 request_size=0" \
3144 0 \
3145 -s "dumping 'input payload after decrypt' (0 bytes)" \
3146 -c "0 bytes written in 1 fragments"
3147
3148run_test "Encrypt then MAC, DTLS: empty application data record" \
3149 "$P_SRV auth_mode=none debug_level=4 etm=1 dtls=1" \
3150 "$P_CLI auth_mode=none etm=1 request_size=0 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA dtls=1" \
3151 0 \
3152 -S "0000: 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f" \
3153 -s "dumping 'input payload after decrypt' (0 bytes)" \
3154 -c "0 bytes written in 1 fragments"
3155
Manuel Pégourié-Gonnard9e2c80f2020-03-24 10:53:39 +0100[diff] [blame]3156run_test "Encrypt then MAC, DTLS: disabled, empty application data record" \
Andres Amaya Garcia4c761fa2018-07-10 20:08:04 +0100[diff] [blame]3157 "$P_SRV auth_mode=none debug_level=4 etm=0 dtls=1" \
3158 "$P_CLI auth_mode=none etm=0 request_size=0 dtls=1" \
3159 0 \
3160 -s "dumping 'input payload after decrypt' (0 bytes)" \
3161 -c "0 bytes written in 1 fragments"
3162
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]3163## ClientHello generated with
3164## "openssl s_client -CAfile tests/data_files/test-ca.crt -tls1_1 -connect localhost:4433 -cipher ..."
3165## then manually twiddling the ciphersuite list.
3166## The ClientHello content is spelled out below as a hex string as
3167## "prefix ciphersuite1 ciphersuite2 ciphersuite3 ciphersuite4 suffix".
3168## The expected response is an inappropriate_fallback alert.
Gilles Peskinebba3b4c2022-04-09 00:08:47 +0200[diff] [blame]3169requires_config_enabled MBEDTLS_SSL_FALLBACK_SCSV
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]3170run_test "Fallback SCSV: beginning of list" \
3171 "$P_SRV debug_level=2" \
3172 "$TCP_CLIENT localhost $SRV_PORT '160301003e0100003a03022aafb94308dc22ca1086c65acc00e414384d76b61ecab37df1633b1ae1034dbe000008 5600 0031 0032 0033 0100000900230000000f000101' '15030200020256'" \
3173 0 \
3174 -s "received FALLBACK_SCSV" \
3175 -s "inapropriate fallback"
3176
Gilles Peskinebba3b4c2022-04-09 00:08:47 +0200[diff] [blame]3177requires_config_enabled MBEDTLS_SSL_FALLBACK_SCSV
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]3178run_test "Fallback SCSV: end of list" \
3179 "$P_SRV debug_level=2" \
3180 "$TCP_CLIENT localhost $SRV_PORT '160301003e0100003a03022aafb94308dc22ca1086c65acc00e414384d76b61ecab37df1633b1ae1034dbe000008 0031 0032 0033 5600 0100000900230000000f000101' '15030200020256'" \
3181 0 \
3182 -s "received FALLBACK_SCSV" \
3183 -s "inapropriate fallback"
3184
3185## Here the expected response is a valid ServerHello prefix, up to the random.
Gilles Peskinebba3b4c2022-04-09 00:08:47 +0200[diff] [blame]3186requires_config_enabled MBEDTLS_SSL_FALLBACK_SCSV
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]3187run_test "Fallback SCSV: not in list" \
3188 "$P_SRV debug_level=2" \
3189 "$TCP_CLIENT localhost $SRV_PORT '160301003e0100003a03022aafb94308dc22ca1086c65acc00e414384d76b61ecab37df1633b1ae1034dbe000008 0056 0031 0032 0033 0100000900230000000f000101' '16030200300200002c0302'" \
3190 0 \
3191 -S "received FALLBACK_SCSV" \
3192 -S "inapropriate fallback"
3193
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]3194# Tests for CBC 1/n-1 record splitting
3195
3196run_test "CBC Record splitting: TLS 1.2, no splitting" \
3197 "$P_SRV" \
3198 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]3199 request_size=123 force_version=tls12" \
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]3200 0 \
3201 -s "Read from client: 123 bytes read" \
3202 -S "Read from client: 1 bytes read" \
3203 -S "122 bytes read"
3204
3205run_test "CBC Record splitting: TLS 1.1, no splitting" \
3206 "$P_SRV" \
3207 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
3208 request_size=123 force_version=tls1_1" \
3209 0 \
3210 -s "Read from client: 123 bytes read" \
3211 -S "Read from client: 1 bytes read" \
3212 -S "122 bytes read"
3213
3214run_test "CBC Record splitting: TLS 1.0, splitting" \
3215 "$P_SRV" \
3216 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
3217 request_size=123 force_version=tls1" \
3218 0 \
3219 -S "Read from client: 123 bytes read" \
3220 -s "Read from client: 1 bytes read" \
3221 -s "122 bytes read"
3222
3223run_test "CBC Record splitting: SSLv3, splitting" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]3224 "$P_SRV min_version=ssl3" \
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]3225 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
3226 request_size=123 force_version=ssl3" \
3227 0 \
3228 -S "Read from client: 123 bytes read" \
3229 -s "Read from client: 1 bytes read" \
3230 -s "122 bytes read"
3231
3232run_test "CBC Record splitting: TLS 1.0 RC4, no splitting" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]3233 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]3234 "$P_CLI force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
3235 request_size=123 force_version=tls1" \
3236 0 \
3237 -s "Read from client: 123 bytes read" \
3238 -S "Read from client: 1 bytes read" \
3239 -S "122 bytes read"
3240
3241run_test "CBC Record splitting: TLS 1.0, splitting disabled" \
3242 "$P_SRV" \
3243 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
3244 request_size=123 force_version=tls1 recsplit=0" \
3245 0 \
3246 -s "Read from client: 123 bytes read" \
3247 -S "Read from client: 1 bytes read" \
3248 -S "122 bytes read"
3249
Manuel Pégourié-Gonnarda852cf42015-01-13 20:56:15 +0100[diff] [blame]3250run_test "CBC Record splitting: TLS 1.0, splitting, nbio" \
3251 "$P_SRV nbio=2" \
3252 "$P_CLI nbio=2 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
3253 request_size=123 force_version=tls1" \
3254 0 \
3255 -S "Read from client: 123 bytes read" \
3256 -s "Read from client: 1 bytes read" \
3257 -s "122 bytes read"
3258
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]3259# Tests for Session Tickets
3260
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3261run_test "Session resume using tickets: basic" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3262 "$P_SRV debug_level=3 tickets=1" \
3263 "$P_CLI debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]3264 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]3265 -c "client hello, adding session ticket extension" \
3266 -s "found session ticket extension" \
3267 -s "server hello, adding session ticket extension" \
3268 -c "found session_ticket extension" \
3269 -c "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]3270 -S "session successfully restored from cache" \
3271 -s "session successfully restored from ticket" \
3272 -s "a session has been resumed" \
3273 -c "a session has been resumed"
3274
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3275run_test "Session resume using tickets: cache disabled" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3276 "$P_SRV debug_level=3 tickets=1 cache_max=0" \
3277 "$P_CLI debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnarddbe1ee12014-02-21 09:18:13 +0100[diff] [blame]3278 0 \
3279 -c "client hello, adding session ticket extension" \
3280 -s "found session ticket extension" \
3281 -s "server hello, adding session ticket extension" \
3282 -c "found session_ticket extension" \
3283 -c "parse new session ticket" \
3284 -S "session successfully restored from cache" \
3285 -s "session successfully restored from ticket" \
3286 -s "a session has been resumed" \
3287 -c "a session has been resumed"
3288
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3289run_test "Session resume using tickets: timeout" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3290 "$P_SRV debug_level=3 tickets=1 cache_max=0 ticket_timeout=1" \
3291 "$P_CLI debug_level=3 tickets=1 reconnect=1 reco_delay=2" \
Manuel Pégourié-Gonnarddbe1ee12014-02-21 09:18:13 +0100[diff] [blame]3292 0 \
3293 -c "client hello, adding session ticket extension" \
3294 -s "found session ticket extension" \
3295 -s "server hello, adding session ticket extension" \
3296 -c "found session_ticket extension" \
3297 -c "parse new session ticket" \
3298 -S "session successfully restored from cache" \
3299 -S "session successfully restored from ticket" \
3300 -S "a session has been resumed" \
3301 -C "a session has been resumed"
3302
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]3303run_test "Session resume using tickets: session copy" \
3304 "$P_SRV debug_level=3 tickets=1 cache_max=0" \
3305 "$P_CLI debug_level=3 tickets=1 reconnect=1 reco_mode=0" \
3306 0 \
3307 -c "client hello, adding session ticket extension" \
3308 -s "found session ticket extension" \
3309 -s "server hello, adding session ticket extension" \
3310 -c "found session_ticket extension" \
3311 -c "parse new session ticket" \
3312 -S "session successfully restored from cache" \
3313 -s "session successfully restored from ticket" \
3314 -s "a session has been resumed" \
3315 -c "a session has been resumed"
3316
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3317run_test "Session resume using tickets: openssl server" \
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]3318 "$O_SRV" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3319 "$P_CLI debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]3320 0 \
3321 -c "client hello, adding session ticket extension" \
3322 -c "found session_ticket extension" \
3323 -c "parse new session ticket" \
3324 -c "a session has been resumed"
3325
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3326run_test "Session resume using tickets: openssl client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3327 "$P_SRV debug_level=3 tickets=1" \
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]3328 "( $O_CLI -sess_out $SESSION; \
3329 $O_CLI -sess_in $SESSION; \
3330 rm -f $SESSION )" \
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]3331 0 \
3332 -s "found session ticket extension" \
3333 -s "server hello, adding session ticket extension" \
3334 -S "session successfully restored from cache" \
3335 -s "session successfully restored from ticket" \
3336 -s "a session has been resumed"
3337
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3338# Tests for Session Tickets with DTLS
3339
3340run_test "Session resume using tickets, DTLS: basic" \
3341 "$P_SRV debug_level=3 dtls=1 tickets=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3342 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3343 0 \
3344 -c "client hello, adding session ticket extension" \
3345 -s "found session ticket extension" \
3346 -s "server hello, adding session ticket extension" \
3347 -c "found session_ticket extension" \
3348 -c "parse new session ticket" \
3349 -S "session successfully restored from cache" \
3350 -s "session successfully restored from ticket" \
3351 -s "a session has been resumed" \
3352 -c "a session has been resumed"
3353
3354run_test "Session resume using tickets, DTLS: cache disabled" \
3355 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3356 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3357 0 \
3358 -c "client hello, adding session ticket extension" \
3359 -s "found session ticket extension" \
3360 -s "server hello, adding session ticket extension" \
3361 -c "found session_ticket extension" \
3362 -c "parse new session ticket" \
3363 -S "session successfully restored from cache" \
3364 -s "session successfully restored from ticket" \
3365 -s "a session has been resumed" \
3366 -c "a session has been resumed"
3367
3368run_test "Session resume using tickets, DTLS: timeout" \
3369 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0 ticket_timeout=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3370 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1 reco_delay=2" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3371 0 \
3372 -c "client hello, adding session ticket extension" \
3373 -s "found session ticket extension" \
3374 -s "server hello, adding session ticket extension" \
3375 -c "found session_ticket extension" \
3376 -c "parse new session ticket" \
3377 -S "session successfully restored from cache" \
3378 -S "session successfully restored from ticket" \
3379 -S "a session has been resumed" \
3380 -C "a session has been resumed"
3381
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]3382run_test "Session resume using tickets, DTLS: session copy" \
3383 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3384 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1 reco_mode=0" \
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]3385 0 \
3386 -c "client hello, adding session ticket extension" \
3387 -s "found session ticket extension" \
3388 -s "server hello, adding session ticket extension" \
3389 -c "found session_ticket extension" \
3390 -c "parse new session ticket" \
3391 -S "session successfully restored from cache" \
3392 -s "session successfully restored from ticket" \
3393 -s "a session has been resumed" \
3394 -c "a session has been resumed"
3395
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3396run_test "Session resume using tickets, DTLS: openssl server" \
3397 "$O_SRV -dtls1" \
3398 "$P_CLI dtls=1 debug_level=3 tickets=1 reconnect=1" \
3399 0 \
3400 -c "client hello, adding session ticket extension" \
3401 -c "found session_ticket extension" \
3402 -c "parse new session ticket" \
3403 -c "a session has been resumed"
3404
Manuel Pégourié-Gonnardd76c47d2021-10-13 13:12:47 +0200[diff] [blame]3405# For reasons that aren't fully understood, this test randomly fails with high
Paul Elliott7ca2f392021-10-13 16:13:44 +0100[diff] [blame]3406# probability with OpenSSL 1.0.2g on the CI, see #5012.
Manuel Pégourié-Gonnardd76c47d2021-10-13 13:12:47 +0200[diff] [blame]3407requires_openssl_next
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3408run_test "Session resume using tickets, DTLS: openssl client" \
3409 "$P_SRV dtls=1 debug_level=3 tickets=1" \
Manuel Pégourié-Gonnardd76c47d2021-10-13 13:12:47 +0200[diff] [blame]3410 "( $O_NEXT_CLI -dtls1 -sess_out $SESSION; \
3411 $O_NEXT_CLI -dtls1 -sess_in $SESSION; \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3412 rm -f $SESSION )" \
3413 0 \
3414 -s "found session ticket extension" \
3415 -s "server hello, adding session ticket extension" \
3416 -S "session successfully restored from cache" \
3417 -s "session successfully restored from ticket" \
3418 -s "a session has been resumed"
3419
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]3420# Tests for Session Resume based on session-ID and cache
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]3421
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3422run_test "Session resume using cache: tickets enabled on client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3423 "$P_SRV debug_level=3 tickets=0" \
3424 "$P_CLI debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]3425 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]3426 -c "client hello, adding session ticket extension" \
3427 -s "found session ticket extension" \
3428 -S "server hello, adding session ticket extension" \
3429 -C "found session_ticket extension" \
3430 -C "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]3431 -s "session successfully restored from cache" \
3432 -S "session successfully restored from ticket" \
3433 -s "a session has been resumed" \
3434 -c "a session has been resumed"
3435
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3436run_test "Session resume using cache: tickets enabled on server" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3437 "$P_SRV debug_level=3 tickets=1" \
3438 "$P_CLI debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]3439 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]3440 -C "client hello, adding session ticket extension" \
3441 -S "found session ticket extension" \
3442 -S "server hello, adding session ticket extension" \
3443 -C "found session_ticket extension" \
3444 -C "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]3445 -s "session successfully restored from cache" \
3446 -S "session successfully restored from ticket" \
3447 -s "a session has been resumed" \
3448 -c "a session has been resumed"
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]3449
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3450run_test "Session resume using cache: cache_max=0" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3451 "$P_SRV debug_level=3 tickets=0 cache_max=0" \
3452 "$P_CLI debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]3453 0 \
3454 -S "session successfully restored from cache" \
3455 -S "session successfully restored from ticket" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]3456 -S "a session has been resumed" \
3457 -C "a session has been resumed"
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]3458
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3459requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3460run_test "Session resume using cache: cache_max=1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3461 "$P_SRV debug_level=3 tickets=0 cache_max=1" \
3462 "$P_CLI debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]3463 0 \
3464 -s "session successfully restored from cache" \
3465 -S "session successfully restored from ticket" \
3466 -s "a session has been resumed" \
3467 -c "a session has been resumed"
3468
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3469requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard6df31962015-05-04 10:55:47 +0200[diff] [blame]3470run_test "Session resume using cache: timeout > delay" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3471 "$P_SRV debug_level=3 tickets=0" \
3472 "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_delay=0" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]3473 0 \
3474 -s "session successfully restored from cache" \
3475 -S "session successfully restored from ticket" \
3476 -s "a session has been resumed" \
3477 -c "a session has been resumed"
3478
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3479requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3480run_test "Session resume using cache: timeout < delay" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3481 "$P_SRV debug_level=3 tickets=0 cache_timeout=1" \
3482 "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_delay=2" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]3483 0 \
3484 -S "session successfully restored from cache" \
3485 -S "session successfully restored from ticket" \
3486 -S "a session has been resumed" \
3487 -C "a session has been resumed"
3488
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3489requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3490run_test "Session resume using cache: no timeout" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3491 "$P_SRV debug_level=3 tickets=0 cache_timeout=0" \
3492 "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_delay=2" \
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]3493 0 \
3494 -s "session successfully restored from cache" \
3495 -S "session successfully restored from ticket" \
3496 -s "a session has been resumed" \
3497 -c "a session has been resumed"
3498
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3499requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]3500run_test "Session resume using cache: session copy" \
3501 "$P_SRV debug_level=3 tickets=0" \
3502 "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_mode=0" \
3503 0 \
3504 -s "session successfully restored from cache" \
3505 -S "session successfully restored from ticket" \
3506 -s "a session has been resumed" \
3507 -c "a session has been resumed"
3508
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3509requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3510run_test "Session resume using cache: openssl client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3511 "$P_SRV debug_level=3 tickets=0" \
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]3512 "( $O_CLI -sess_out $SESSION; \
3513 $O_CLI -sess_in $SESSION; \
3514 rm -f $SESSION )" \
Manuel Pégourié-Gonnarddb735f62014-02-25 17:57:59 +0100[diff] [blame]3515 0 \
3516 -s "found session ticket extension" \
3517 -S "server hello, adding session ticket extension" \
3518 -s "session successfully restored from cache" \
3519 -S "session successfully restored from ticket" \
3520 -s "a session has been resumed"
3521
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3522requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3523run_test "Session resume using cache: openssl server" \
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]3524 "$O_SRV" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3525 "$P_CLI debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnarddb735f62014-02-25 17:57:59 +0100[diff] [blame]3526 0 \
3527 -C "found session_ticket extension" \
3528 -C "parse new session ticket" \
3529 -c "a session has been resumed"
3530
Andrzej Kurekc87d97b2022-06-14 07:12:33 -0400[diff] [blame]3531# Tests for Session resume and extensions
3532
3533requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
3534requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3535run_test "Session resume and connection ID" \
3536 "$P_SRV debug_level=3 cid=1 cid_val=dead dtls=1 tickets=0" \
3537 "$P_CLI debug_level=3 cid=1 cid_val=beef dtls=1 tickets=0 reconnect=1" \
3538 0 \
3539 -c "Enable use of CID extension." \
3540 -s "Enable use of CID extension." \
3541 -c "client hello, adding CID extension" \
3542 -s "found CID extension" \
3543 -s "Use of CID extension negotiated" \
3544 -s "server hello, adding CID extension" \
3545 -c "found CID extension" \
3546 -c "Use of CID extension negotiated" \
3547 -s "Copy CIDs into SSL transform" \
3548 -c "Copy CIDs into SSL transform" \
3549 -c "Peer CID (length 2 Bytes): de ad" \
3550 -s "Peer CID (length 2 Bytes): be ef" \
3551 -s "Use of Connection ID has been negotiated" \
3552 -c "Use of Connection ID has been negotiated"
3553
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3554# Tests for Session Resume based on session-ID and cache, DTLS
3555
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3556requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3557run_test "Session resume using cache, DTLS: tickets enabled on client" \
3558 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3559 "$P_CLI dtls=1 debug_level=3 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3560 0 \
3561 -c "client hello, adding session ticket extension" \
3562 -s "found session ticket extension" \
3563 -S "server hello, adding session ticket extension" \
3564 -C "found session_ticket extension" \
3565 -C "parse new session ticket" \
3566 -s "session successfully restored from cache" \
3567 -S "session successfully restored from ticket" \
3568 -s "a session has been resumed" \
3569 -c "a session has been resumed"
3570
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3571requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3572run_test "Session resume using cache, DTLS: tickets enabled on server" \
3573 "$P_SRV dtls=1 debug_level=3 tickets=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3574 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3575 0 \
3576 -C "client hello, adding session ticket extension" \
3577 -S "found session ticket extension" \
3578 -S "server hello, adding session ticket extension" \
3579 -C "found session_ticket extension" \
3580 -C "parse new session ticket" \
3581 -s "session successfully restored from cache" \
3582 -S "session successfully restored from ticket" \
3583 -s "a session has been resumed" \
3584 -c "a session has been resumed"
3585
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3586requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3587run_test "Session resume using cache, DTLS: cache_max=0" \
3588 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_max=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3589 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3590 0 \
3591 -S "session successfully restored from cache" \
3592 -S "session successfully restored from ticket" \
3593 -S "a session has been resumed" \
3594 -C "a session has been resumed"
3595
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3596requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3597run_test "Session resume using cache, DTLS: cache_max=1" \
3598 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_max=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3599 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3600 0 \
3601 -s "session successfully restored from cache" \
3602 -S "session successfully restored from ticket" \
3603 -s "a session has been resumed" \
3604 -c "a session has been resumed"
3605
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3606requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3607run_test "Session resume using cache, DTLS: timeout > delay" \
3608 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3609 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=0" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3610 0 \
3611 -s "session successfully restored from cache" \
3612 -S "session successfully restored from ticket" \
3613 -s "a session has been resumed" \
3614 -c "a session has been resumed"
3615
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3616requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3617run_test "Session resume using cache, DTLS: timeout < delay" \
3618 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_timeout=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3619 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=2" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3620 0 \
3621 -S "session successfully restored from cache" \
3622 -S "session successfully restored from ticket" \
3623 -S "a session has been resumed" \
3624 -C "a session has been resumed"
3625
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3626requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3627run_test "Session resume using cache, DTLS: no timeout" \
3628 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_timeout=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3629 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=2" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3630 0 \
3631 -s "session successfully restored from cache" \
3632 -S "session successfully restored from ticket" \
3633 -s "a session has been resumed" \
3634 -c "a session has been resumed"
3635
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3636requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]3637run_test "Session resume using cache, DTLS: session copy" \
3638 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]3639 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_mode=0" \
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]3640 0 \
3641 -s "session successfully restored from cache" \
3642 -S "session successfully restored from ticket" \
3643 -s "a session has been resumed" \
3644 -c "a session has been resumed"
3645
Manuel Pégourié-Gonnardd76c47d2021-10-13 13:12:47 +0200[diff] [blame]3646# For reasons that aren't fully understood, this test randomly fails with high
Paul Elliott7ca2f392021-10-13 16:13:44 +0100[diff] [blame]3647# probability with OpenSSL 1.0.2g on the CI, see #5012.
Manuel Pégourié-Gonnardd76c47d2021-10-13 13:12:47 +0200[diff] [blame]3648requires_openssl_next
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3649requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3650run_test "Session resume using cache, DTLS: openssl client" \
3651 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnardd76c47d2021-10-13 13:12:47 +0200[diff] [blame]3652 "( $O_NEXT_CLI -dtls1 -sess_out $SESSION; \
3653 $O_NEXT_CLI -dtls1 -sess_in $SESSION; \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3654 rm -f $SESSION )" \
3655 0 \
3656 -s "found session ticket extension" \
3657 -S "server hello, adding session ticket extension" \
3658 -s "session successfully restored from cache" \
3659 -S "session successfully restored from ticket" \
3660 -s "a session has been resumed"
3661
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]3662requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]3663run_test "Session resume using cache, DTLS: openssl server" \
3664 "$O_SRV -dtls1" \
3665 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1" \
3666 0 \
3667 -C "found session_ticket extension" \
3668 -C "parse new session ticket" \
3669 -c "a session has been resumed"
3670
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]3671# Tests for Max Fragment Length extension
3672
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]3673requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3674run_test "Max fragment length: enabled, default" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3675 "$P_SRV debug_level=3" \
3676 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]3677 0 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3678 -c "Maximum input fragment length is $MAX_CONTENT_LEN" \
3679 -c "Maximum output fragment length is $MAX_CONTENT_LEN" \
3680 -s "Maximum input fragment length is $MAX_CONTENT_LEN" \
3681 -s "Maximum output fragment length is $MAX_CONTENT_LEN" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]3682 -C "client hello, adding max_fragment_length extension" \
3683 -S "found max fragment length extension" \
3684 -S "server hello, max_fragment_length extension" \
3685 -C "found max_fragment_length extension"
3686
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]3687requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3688run_test "Max fragment length: enabled, default, larger message" \
3689 "$P_SRV debug_level=3" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]3690 "$P_CLI debug_level=3 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3691 0 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3692 -c "Maximum input fragment length is $MAX_CONTENT_LEN" \
3693 -c "Maximum output fragment length is $MAX_CONTENT_LEN" \
3694 -s "Maximum input fragment length is $MAX_CONTENT_LEN" \
3695 -s "Maximum output fragment length is $MAX_CONTENT_LEN" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3696 -C "client hello, adding max_fragment_length extension" \
3697 -S "found max fragment length extension" \
3698 -S "server hello, max_fragment_length extension" \
3699 -C "found max_fragment_length extension" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]3700 -c "$(( $MAX_CONTENT_LEN + 1)) bytes written in 2 fragments" \
3701 -s "$MAX_CONTENT_LEN bytes read" \
Hanno Becker9cfabe32017-10-18 14:42:01 +0100[diff] [blame]3702 -s "1 bytes read"
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3703
3704requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3705run_test "Max fragment length, DTLS: enabled, default, larger message" \
3706 "$P_SRV debug_level=3 dtls=1" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]3707 "$P_CLI debug_level=3 dtls=1 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3708 1 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3709 -c "Maximum input fragment length is $MAX_CONTENT_LEN" \
3710 -c "Maximum output fragment length is $MAX_CONTENT_LEN" \
3711 -s "Maximum input fragment length is $MAX_CONTENT_LEN" \
3712 -s "Maximum output fragment length is $MAX_CONTENT_LEN" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3713 -C "client hello, adding max_fragment_length extension" \
3714 -S "found max fragment length extension" \
3715 -S "server hello, max_fragment_length extension" \
3716 -C "found max_fragment_length extension" \
3717 -c "fragment larger than.*maximum "
3718
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]3719# Run some tests with MBEDTLS_SSL_MAX_FRAGMENT_LENGTH disabled
3720# (session fragment length will be 16384 regardless of mbedtls
3721# content length configuration.)
3722
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3723requires_config_disabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3724run_test "Max fragment length: disabled, larger message" \
3725 "$P_SRV debug_level=3" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]3726 "$P_CLI debug_level=3 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3727 0 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3728 -C "Maximum input fragment length is 16384" \
3729 -C "Maximum output fragment length is 16384" \
3730 -S "Maximum input fragment length is 16384" \
3731 -S "Maximum output fragment length is 16384" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]3732 -c "$(( $MAX_CONTENT_LEN + 1)) bytes written in 2 fragments" \
3733 -s "$MAX_CONTENT_LEN bytes read" \
Hanno Becker9cfabe32017-10-18 14:42:01 +0100[diff] [blame]3734 -s "1 bytes read"
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3735
3736requires_config_disabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takano18ddccc2021-06-21 19:43:33 +0100[diff] [blame]3737run_test "Max fragment length, DTLS: disabled, larger message" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3738 "$P_SRV debug_level=3 dtls=1" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]3739 "$P_CLI debug_level=3 dtls=1 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3740 1 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3741 -C "Maximum input fragment length is 16384" \
3742 -C "Maximum output fragment length is 16384" \
3743 -S "Maximum input fragment length is 16384" \
3744 -S "Maximum output fragment length is 16384" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3745 -c "fragment larger than.*maximum "
3746
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3747requires_max_content_len 4096
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]3748requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3749run_test "Max fragment length: used by client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3750 "$P_SRV debug_level=3" \
3751 "$P_CLI debug_level=3 max_frag_len=4096" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]3752 0 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3753 -c "Maximum input fragment length is 4096" \
3754 -c "Maximum output fragment length is 4096" \
3755 -s "Maximum input fragment length is 4096" \
3756 -s "Maximum output fragment length is 4096" \
3757 -c "client hello, adding max_fragment_length extension" \
3758 -s "found max fragment length extension" \
3759 -s "server hello, max_fragment_length extension" \
3760 -c "found max_fragment_length extension"
3761
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3762requires_max_content_len 1024
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3763requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3764run_test "Max fragment length: client 512, server 1024" \
3765 "$P_SRV debug_level=3 max_frag_len=1024" \
3766 "$P_CLI debug_level=3 max_frag_len=512" \
3767 0 \
3768 -c "Maximum input fragment length is 512" \
3769 -c "Maximum output fragment length is 512" \
3770 -s "Maximum input fragment length is 512" \
3771 -s "Maximum output fragment length is 512" \
3772 -c "client hello, adding max_fragment_length extension" \
3773 -s "found max fragment length extension" \
3774 -s "server hello, max_fragment_length extension" \
3775 -c "found max_fragment_length extension"
3776
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3777requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3778requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3779run_test "Max fragment length: client 512, server 2048" \
3780 "$P_SRV debug_level=3 max_frag_len=2048" \
3781 "$P_CLI debug_level=3 max_frag_len=512" \
3782 0 \
3783 -c "Maximum input fragment length is 512" \
3784 -c "Maximum output fragment length is 512" \
3785 -s "Maximum input fragment length is 512" \
3786 -s "Maximum output fragment length is 512" \
3787 -c "client hello, adding max_fragment_length extension" \
3788 -s "found max fragment length extension" \
3789 -s "server hello, max_fragment_length extension" \
3790 -c "found max_fragment_length extension"
3791
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3792requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3793requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3794run_test "Max fragment length: client 512, server 4096" \
3795 "$P_SRV debug_level=3 max_frag_len=4096" \
3796 "$P_CLI debug_level=3 max_frag_len=512" \
3797 0 \
3798 -c "Maximum input fragment length is 512" \
3799 -c "Maximum output fragment length is 512" \
3800 -s "Maximum input fragment length is 512" \
3801 -s "Maximum output fragment length is 512" \
3802 -c "client hello, adding max_fragment_length extension" \
3803 -s "found max fragment length extension" \
3804 -s "server hello, max_fragment_length extension" \
3805 -c "found max_fragment_length extension"
3806
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3807requires_max_content_len 1024
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3808requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3809run_test "Max fragment length: client 1024, server 512" \
3810 "$P_SRV debug_level=3 max_frag_len=512" \
3811 "$P_CLI debug_level=3 max_frag_len=1024" \
3812 0 \
3813 -c "Maximum input fragment length is 1024" \
3814 -c "Maximum output fragment length is 1024" \
3815 -s "Maximum input fragment length is 1024" \
3816 -s "Maximum output fragment length is 512" \
3817 -c "client hello, adding max_fragment_length extension" \
3818 -s "found max fragment length extension" \
3819 -s "server hello, max_fragment_length extension" \
3820 -c "found max_fragment_length extension"
3821
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3822requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3823requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3824run_test "Max fragment length: client 1024, server 2048" \
3825 "$P_SRV debug_level=3 max_frag_len=2048" \
3826 "$P_CLI debug_level=3 max_frag_len=1024" \
3827 0 \
3828 -c "Maximum input fragment length is 1024" \
3829 -c "Maximum output fragment length is 1024" \
3830 -s "Maximum input fragment length is 1024" \
3831 -s "Maximum output fragment length is 1024" \
3832 -c "client hello, adding max_fragment_length extension" \
3833 -s "found max fragment length extension" \
3834 -s "server hello, max_fragment_length extension" \
3835 -c "found max_fragment_length extension"
3836
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3837requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3838requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3839run_test "Max fragment length: client 1024, server 4096" \
3840 "$P_SRV debug_level=3 max_frag_len=4096" \
3841 "$P_CLI debug_level=3 max_frag_len=1024" \
3842 0 \
3843 -c "Maximum input fragment length is 1024" \
3844 -c "Maximum output fragment length is 1024" \
3845 -s "Maximum input fragment length is 1024" \
3846 -s "Maximum output fragment length is 1024" \
3847 -c "client hello, adding max_fragment_length extension" \
3848 -s "found max fragment length extension" \
3849 -s "server hello, max_fragment_length extension" \
3850 -c "found max_fragment_length extension"
3851
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3852requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3853requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3854run_test "Max fragment length: client 2048, server 512" \
3855 "$P_SRV debug_level=3 max_frag_len=512" \
3856 "$P_CLI debug_level=3 max_frag_len=2048" \
3857 0 \
3858 -c "Maximum input fragment length is 2048" \
3859 -c "Maximum output fragment length is 2048" \
3860 -s "Maximum input fragment length is 2048" \
3861 -s "Maximum output fragment length is 512" \
3862 -c "client hello, adding max_fragment_length extension" \
3863 -s "found max fragment length extension" \
3864 -s "server hello, max_fragment_length extension" \
3865 -c "found max_fragment_length extension"
3866
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3867requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3868requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3869run_test "Max fragment length: client 2048, server 1024" \
3870 "$P_SRV debug_level=3 max_frag_len=1024" \
3871 "$P_CLI debug_level=3 max_frag_len=2048" \
3872 0 \
3873 -c "Maximum input fragment length is 2048" \
3874 -c "Maximum output fragment length is 2048" \
3875 -s "Maximum input fragment length is 2048" \
3876 -s "Maximum output fragment length is 1024" \
3877 -c "client hello, adding max_fragment_length extension" \
3878 -s "found max fragment length extension" \
3879 -s "server hello, max_fragment_length extension" \
3880 -c "found max_fragment_length extension"
3881
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3882requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3883requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3884run_test "Max fragment length: client 2048, server 4096" \
3885 "$P_SRV debug_level=3 max_frag_len=4096" \
3886 "$P_CLI debug_level=3 max_frag_len=2048" \
3887 0 \
3888 -c "Maximum input fragment length is 2048" \
3889 -c "Maximum output fragment length is 2048" \
3890 -s "Maximum input fragment length is 2048" \
3891 -s "Maximum output fragment length is 2048" \
3892 -c "client hello, adding max_fragment_length extension" \
3893 -s "found max fragment length extension" \
3894 -s "server hello, max_fragment_length extension" \
3895 -c "found max_fragment_length extension"
3896
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3897requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3898requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3899run_test "Max fragment length: client 4096, server 512" \
3900 "$P_SRV debug_level=3 max_frag_len=512" \
3901 "$P_CLI debug_level=3 max_frag_len=4096" \
3902 0 \
3903 -c "Maximum input fragment length is 4096" \
3904 -c "Maximum output fragment length is 4096" \
3905 -s "Maximum input fragment length is 4096" \
3906 -s "Maximum output fragment length is 512" \
3907 -c "client hello, adding max_fragment_length extension" \
3908 -s "found max fragment length extension" \
3909 -s "server hello, max_fragment_length extension" \
3910 -c "found max_fragment_length extension"
3911
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3912requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3913requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3914run_test "Max fragment length: client 4096, server 1024" \
3915 "$P_SRV debug_level=3 max_frag_len=1024" \
3916 "$P_CLI debug_level=3 max_frag_len=4096" \
3917 0 \
3918 -c "Maximum input fragment length is 4096" \
3919 -c "Maximum output fragment length is 4096" \
3920 -s "Maximum input fragment length is 4096" \
3921 -s "Maximum output fragment length is 1024" \
3922 -c "client hello, adding max_fragment_length extension" \
3923 -s "found max fragment length extension" \
3924 -s "server hello, max_fragment_length extension" \
3925 -c "found max_fragment_length extension"
3926
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3927requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3928requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
3929run_test "Max fragment length: client 4096, server 2048" \
3930 "$P_SRV debug_level=3 max_frag_len=2048" \
3931 "$P_CLI debug_level=3 max_frag_len=4096" \
3932 0 \
3933 -c "Maximum input fragment length is 4096" \
3934 -c "Maximum output fragment length is 4096" \
3935 -s "Maximum input fragment length is 4096" \
3936 -s "Maximum output fragment length is 2048" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]3937 -c "client hello, adding max_fragment_length extension" \
3938 -s "found max fragment length extension" \
3939 -s "server hello, max_fragment_length extension" \
3940 -c "found max_fragment_length extension"
3941
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3942requires_max_content_len 4096
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]3943requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3944run_test "Max fragment length: used by server" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3945 "$P_SRV debug_level=3 max_frag_len=4096" \
3946 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]3947 0 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3948 -c "Maximum input fragment length is $MAX_CONTENT_LEN" \
3949 -c "Maximum output fragment length is $MAX_CONTENT_LEN" \
3950 -s "Maximum input fragment length is $MAX_CONTENT_LEN" \
3951 -s "Maximum output fragment length is 4096" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]3952 -C "client hello, adding max_fragment_length extension" \
3953 -S "found max fragment length extension" \
3954 -S "server hello, max_fragment_length extension" \
3955 -C "found max_fragment_length extension"
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]3956
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3957requires_max_content_len 4096
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]3958requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3959requires_gnutls
3960run_test "Max fragment length: gnutls server" \
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]3961 "$G_SRV" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3962 "$P_CLI debug_level=3 max_frag_len=4096" \
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]3963 0 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3964 -c "Maximum input fragment length is 4096" \
3965 -c "Maximum output fragment length is 4096" \
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]3966 -c "client hello, adding max_fragment_length extension" \
3967 -c "found max_fragment_length extension"
3968
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3969requires_max_content_len 2048
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]3970requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]3971run_test "Max fragment length: client, message just fits" \
3972 "$P_SRV debug_level=3" \
3973 "$P_CLI debug_level=3 max_frag_len=2048 request_size=2048" \
3974 0 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3975 -c "Maximum input fragment length is 2048" \
3976 -c "Maximum output fragment length is 2048" \
3977 -s "Maximum input fragment length is 2048" \
3978 -s "Maximum output fragment length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]3979 -c "client hello, adding max_fragment_length extension" \
3980 -s "found max fragment length extension" \
3981 -s "server hello, max_fragment_length extension" \
3982 -c "found max_fragment_length extension" \
3983 -c "2048 bytes written in 1 fragments" \
3984 -s "2048 bytes read"
3985
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]3986requires_max_content_len 2048
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]3987requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]3988run_test "Max fragment length: client, larger message" \
3989 "$P_SRV debug_level=3" \
3990 "$P_CLI debug_level=3 max_frag_len=2048 request_size=2345" \
3991 0 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]3992 -c "Maximum input fragment length is 2048" \
3993 -c "Maximum output fragment length is 2048" \
3994 -s "Maximum input fragment length is 2048" \
3995 -s "Maximum output fragment length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]3996 -c "client hello, adding max_fragment_length extension" \
3997 -s "found max fragment length extension" \
3998 -s "server hello, max_fragment_length extension" \
3999 -c "found max_fragment_length extension" \
4000 -c "2345 bytes written in 2 fragments" \
4001 -s "2048 bytes read" \
4002 -s "297 bytes read"
4003
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]4004requires_max_content_len 2048
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4005requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard23eb74d2015-01-21 14:37:13 +0000[diff] [blame]4006run_test "Max fragment length: DTLS client, larger message" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4007 "$P_SRV debug_level=3 dtls=1" \
4008 "$P_CLI debug_level=3 dtls=1 max_frag_len=2048 request_size=2345" \
4009 1 \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4010 -c "Maximum input fragment length is 2048" \
4011 -c "Maximum output fragment length is 2048" \
4012 -s "Maximum input fragment length is 2048" \
4013 -s "Maximum output fragment length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4014 -c "client hello, adding max_fragment_length extension" \
4015 -s "found max fragment length extension" \
4016 -s "server hello, max_fragment_length extension" \
4017 -c "found max_fragment_length extension" \
4018 -c "fragment larger than.*maximum"
4019
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4020# Tests for renegotiation
4021
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4022# Renegotiation SCSV always added, regardless of SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4023run_test "Renegotiation: none, for reference" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4024 "$P_SRV debug_level=3 exchanges=2 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4025 "$P_CLI debug_level=3 exchanges=2" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4026 0 \
4027 -C "client hello, adding renegotiation extension" \
4028 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4029 -S "found renegotiation extension" \
4030 -s "server hello, secure renegotiation extension" \
4031 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]4032 -C "=> renegotiate" \
4033 -S "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4034 -S "write hello request"
4035
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4036requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4037run_test "Renegotiation: client-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4038 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4039 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4040 0 \
4041 -c "client hello, adding renegotiation extension" \
4042 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4043 -s "found renegotiation extension" \
4044 -s "server hello, secure renegotiation extension" \
4045 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]4046 -c "=> renegotiate" \
4047 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4048 -S "write hello request"
4049
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4050requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4051run_test "Renegotiation: server-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4052 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4053 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4054 0 \
4055 -c "client hello, adding renegotiation extension" \
4056 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4057 -s "found renegotiation extension" \
4058 -s "server hello, secure renegotiation extension" \
4059 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]4060 -c "=> renegotiate" \
4061 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4062 -s "write hello request"
4063
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]4064# Checks that no Signature Algorithm with SHA-1 gets negotiated. Negotiating SHA-1 would mean that
4065# the server did not parse the Signature Algorithm extension. This test is valid only if an MD
4066# algorithm stronger than SHA-1 is enabled in config.h
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4067requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]4068run_test "Renegotiation: Signature Algorithms parsing, client-initiated" \
4069 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional" \
4070 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
4071 0 \
4072 -c "client hello, adding renegotiation extension" \
4073 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4074 -s "found renegotiation extension" \
4075 -s "server hello, secure renegotiation extension" \
4076 -c "found renegotiation extension" \
4077 -c "=> renegotiate" \
4078 -s "=> renegotiate" \
4079 -S "write hello request" \
4080 -S "client hello v3, signature_algorithm ext: 2" # Is SHA-1 negotiated?
4081
4082# Checks that no Signature Algorithm with SHA-1 gets negotiated. Negotiating SHA-1 would mean that
4083# the server did not parse the Signature Algorithm extension. This test is valid only if an MD
4084# algorithm stronger than SHA-1 is enabled in config.h
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4085requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]4086run_test "Renegotiation: Signature Algorithms parsing, server-initiated" \
4087 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
4088 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
4089 0 \
4090 -c "client hello, adding renegotiation extension" \
4091 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4092 -s "found renegotiation extension" \
4093 -s "server hello, secure renegotiation extension" \
4094 -c "found renegotiation extension" \
4095 -c "=> renegotiate" \
4096 -s "=> renegotiate" \
4097 -s "write hello request" \
4098 -S "client hello v3, signature_algorithm ext: 2" # Is SHA-1 negotiated?
4099
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4100requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4101run_test "Renegotiation: double" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4102 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4103 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4104 0 \
4105 -c "client hello, adding renegotiation extension" \
4106 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4107 -s "found renegotiation extension" \
4108 -s "server hello, secure renegotiation extension" \
4109 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]4110 -c "=> renegotiate" \
4111 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4112 -s "write hello request"
4113
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4114requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Andrzej Kurek8ea68722020-04-03 06:40:47 -0400[diff] [blame]4115requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobec7cf72021-07-02 10:10:49 +0100[diff] [blame]4116requires_max_content_len 2048
Andrzej Kurek8ea68722020-04-03 06:40:47 -0400[diff] [blame]4117run_test "Renegotiation with max fragment length: client 2048, server 512" \
4118 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1 max_frag_len=512" \
4119 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 max_frag_len=2048 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
4120 0 \
4121 -c "Maximum input fragment length is 2048" \
4122 -c "Maximum output fragment length is 2048" \
4123 -s "Maximum input fragment length is 2048" \
4124 -s "Maximum output fragment length is 512" \
4125 -c "client hello, adding max_fragment_length extension" \
4126 -s "found max fragment length extension" \
4127 -s "server hello, max_fragment_length extension" \
4128 -c "found max_fragment_length extension" \
4129 -c "client hello, adding renegotiation extension" \
4130 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4131 -s "found renegotiation extension" \
4132 -s "server hello, secure renegotiation extension" \
4133 -c "found renegotiation extension" \
4134 -c "=> renegotiate" \
4135 -s "=> renegotiate" \
4136 -s "write hello request"
4137
4138requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4139run_test "Renegotiation: client-initiated, server-rejected" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4140 "$P_SRV debug_level=3 exchanges=2 renegotiation=0 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4141 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4142 1 \
4143 -c "client hello, adding renegotiation extension" \
4144 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4145 -S "found renegotiation extension" \
4146 -s "server hello, secure renegotiation extension" \
4147 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]4148 -c "=> renegotiate" \
4149 -S "=> renegotiate" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]4150 -S "write hello request" \
Manuel Pégourié-Gonnard65919622014-08-19 12:50:30 +0200[diff] [blame]4151 -c "SSL - Unexpected message at ServerHello in renegotiation" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]4152 -c "failed"
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4153
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4154requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4155run_test "Renegotiation: server-initiated, client-rejected, default" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4156 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4157 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4158 0 \
4159 -C "client hello, adding renegotiation extension" \
4160 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4161 -S "found renegotiation extension" \
4162 -s "server hello, secure renegotiation extension" \
4163 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]4164 -C "=> renegotiate" \
4165 -S "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4166 -s "write hello request" \
Manuel Pégourié-Gonnarda9964db2014-07-03 19:29:16 +0200[diff] [blame]4167 -S "SSL - An unexpected message was received from our peer" \
4168 -S "failed"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]4169
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4170requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4171run_test "Renegotiation: server-initiated, client-rejected, not enforced" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4172 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4173 renego_delay=-1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4174 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]4175 0 \
4176 -C "client hello, adding renegotiation extension" \
4177 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4178 -S "found renegotiation extension" \
4179 -s "server hello, secure renegotiation extension" \
4180 -c "found renegotiation extension" \
4181 -C "=> renegotiate" \
4182 -S "=> renegotiate" \
4183 -s "write hello request" \
4184 -S "SSL - An unexpected message was received from our peer" \
4185 -S "failed"
4186
Manuel Pégourié-Gonnarda8c0a0d2014-08-15 12:07:38 +0200[diff] [blame]4187# delay 2 for 1 alert record + 1 application data record
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4188requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4189run_test "Renegotiation: server-initiated, client-rejected, delay 2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4190 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4191 renego_delay=2 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4192 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]4193 0 \
4194 -C "client hello, adding renegotiation extension" \
4195 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4196 -S "found renegotiation extension" \
4197 -s "server hello, secure renegotiation extension" \
4198 -c "found renegotiation extension" \
4199 -C "=> renegotiate" \
4200 -S "=> renegotiate" \
4201 -s "write hello request" \
4202 -S "SSL - An unexpected message was received from our peer" \
4203 -S "failed"
4204
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4205requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4206run_test "Renegotiation: server-initiated, client-rejected, delay 0" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4207 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4208 renego_delay=0 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4209 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]4210 0 \
4211 -C "client hello, adding renegotiation extension" \
4212 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4213 -S "found renegotiation extension" \
4214 -s "server hello, secure renegotiation extension" \
4215 -c "found renegotiation extension" \
4216 -C "=> renegotiate" \
4217 -S "=> renegotiate" \
4218 -s "write hello request" \
Manuel Pégourié-Gonnarda8c0a0d2014-08-15 12:07:38 +0200[diff] [blame]4219 -s "SSL - An unexpected message was received from our peer"
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]4220
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4221requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4222run_test "Renegotiation: server-initiated, client-accepted, delay 0" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4223 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4224 renego_delay=0 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4225 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]4226 0 \
4227 -c "client hello, adding renegotiation extension" \
4228 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4229 -s "found renegotiation extension" \
4230 -s "server hello, secure renegotiation extension" \
4231 -c "found renegotiation extension" \
4232 -c "=> renegotiate" \
4233 -s "=> renegotiate" \
4234 -s "write hello request" \
4235 -S "SSL - An unexpected message was received from our peer" \
4236 -S "failed"
4237
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4238requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]4239run_test "Renegotiation: periodic, just below period" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4240 "$P_SRV debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]4241 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
4242 0 \
4243 -C "client hello, adding renegotiation extension" \
4244 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4245 -S "found renegotiation extension" \
4246 -s "server hello, secure renegotiation extension" \
4247 -c "found renegotiation extension" \
4248 -S "record counter limit reached: renegotiate" \
4249 -C "=> renegotiate" \
4250 -S "=> renegotiate" \
4251 -S "write hello request" \
4252 -S "SSL - An unexpected message was received from our peer" \
4253 -S "failed"
4254
Manuel Pégourié-Gonnard9835bc02015-01-14 14:41:58 +0100[diff] [blame]4255# one extra exchange to be able to complete renego
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4256requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]4257run_test "Renegotiation: periodic, just above period" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4258 "$P_SRV debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard9835bc02015-01-14 14:41:58 +0100[diff] [blame]4259 "$P_CLI debug_level=3 exchanges=4 renegotiation=1" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]4260 0 \
4261 -c "client hello, adding renegotiation extension" \
4262 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4263 -s "found renegotiation extension" \
4264 -s "server hello, secure renegotiation extension" \
4265 -c "found renegotiation extension" \
4266 -s "record counter limit reached: renegotiate" \
4267 -c "=> renegotiate" \
4268 -s "=> renegotiate" \
4269 -s "write hello request" \
4270 -S "SSL - An unexpected message was received from our peer" \
4271 -S "failed"
4272
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4273requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]4274run_test "Renegotiation: periodic, two times period" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4275 "$P_SRV debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard9835bc02015-01-14 14:41:58 +0100[diff] [blame]4276 "$P_CLI debug_level=3 exchanges=7 renegotiation=1" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]4277 0 \
4278 -c "client hello, adding renegotiation extension" \
4279 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4280 -s "found renegotiation extension" \
4281 -s "server hello, secure renegotiation extension" \
4282 -c "found renegotiation extension" \
4283 -s "record counter limit reached: renegotiate" \
4284 -c "=> renegotiate" \
4285 -s "=> renegotiate" \
4286 -s "write hello request" \
4287 -S "SSL - An unexpected message was received from our peer" \
4288 -S "failed"
4289
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4290requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]4291run_test "Renegotiation: periodic, above period, disabled" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4292 "$P_SRV debug_level=3 exchanges=9 renegotiation=0 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]4293 "$P_CLI debug_level=3 exchanges=4 renegotiation=1" \
4294 0 \
4295 -C "client hello, adding renegotiation extension" \
4296 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4297 -S "found renegotiation extension" \
4298 -s "server hello, secure renegotiation extension" \
4299 -c "found renegotiation extension" \
4300 -S "record counter limit reached: renegotiate" \
4301 -C "=> renegotiate" \
4302 -S "=> renegotiate" \
4303 -S "write hello request" \
4304 -S "SSL - An unexpected message was received from our peer" \
4305 -S "failed"
4306
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4307requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4308run_test "Renegotiation: nbio, client-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4309 "$P_SRV debug_level=3 nbio=2 exchanges=2 renegotiation=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4310 "$P_CLI debug_level=3 nbio=2 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnardf07f4212014-08-15 19:04:47 +0200[diff] [blame]4311 0 \
4312 -c "client hello, adding renegotiation extension" \
4313 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4314 -s "found renegotiation extension" \
4315 -s "server hello, secure renegotiation extension" \
4316 -c "found renegotiation extension" \
4317 -c "=> renegotiate" \
4318 -s "=> renegotiate" \
4319 -S "write hello request"
4320
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4321requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4322run_test "Renegotiation: nbio, server-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]4323 "$P_SRV debug_level=3 nbio=2 exchanges=2 renegotiation=1 renegotiate=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4324 "$P_CLI debug_level=3 nbio=2 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnardf07f4212014-08-15 19:04:47 +0200[diff] [blame]4325 0 \
4326 -c "client hello, adding renegotiation extension" \
4327 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4328 -s "found renegotiation extension" \
4329 -s "server hello, secure renegotiation extension" \
4330 -c "found renegotiation extension" \
4331 -c "=> renegotiate" \
4332 -s "=> renegotiate" \
4333 -s "write hello request"
4334
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4335requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4336run_test "Renegotiation: openssl server, client-initiated" \
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]4337 "$O_SRV -www" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4338 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]4339 0 \
4340 -c "client hello, adding renegotiation extension" \
4341 -c "found renegotiation extension" \
4342 -c "=> renegotiate" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4343 -C "ssl_hanshake() returned" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]4344 -C "error" \
4345 -c "HTTP/1.0 200 [Oo][Kk]"
4346
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]4347requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4348requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4349run_test "Renegotiation: gnutls server strict, client-initiated" \
4350 "$G_SRV --priority=NORMAL:%SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4351 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]4352 0 \
4353 -c "client hello, adding renegotiation extension" \
4354 -c "found renegotiation extension" \
4355 -c "=> renegotiate" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4356 -C "ssl_hanshake() returned" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]4357 -C "error" \
4358 -c "HTTP/1.0 200 [Oo][Kk]"
4359
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]4360requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4361requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4362run_test "Renegotiation: gnutls server unsafe, client-initiated default" \
4363 "$G_SRV --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION" \
4364 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
4365 1 \
4366 -c "client hello, adding renegotiation extension" \
4367 -C "found renegotiation extension" \
4368 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4369 -c "mbedtls_ssl_handshake() returned" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4370 -c "error" \
4371 -C "HTTP/1.0 200 [Oo][Kk]"
4372
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]4373requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4374requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4375run_test "Renegotiation: gnutls server unsafe, client-inititated no legacy" \
4376 "$G_SRV --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION" \
4377 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1 \
4378 allow_legacy=0" \
4379 1 \
4380 -c "client hello, adding renegotiation extension" \
4381 -C "found renegotiation extension" \
4382 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4383 -c "mbedtls_ssl_handshake() returned" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4384 -c "error" \
4385 -C "HTTP/1.0 200 [Oo][Kk]"
4386
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]4387requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4388requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4389run_test "Renegotiation: gnutls server unsafe, client-inititated legacy" \
4390 "$G_SRV --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION" \
4391 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1 \
4392 allow_legacy=1" \
4393 0 \
4394 -c "client hello, adding renegotiation extension" \
4395 -C "found renegotiation extension" \
4396 -c "=> renegotiate" \
4397 -C "ssl_hanshake() returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4398 -C "error" \
4399 -c "HTTP/1.0 200 [Oo][Kk]"
4400
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4401requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard30d16eb2014-08-19 17:43:50 +0200[diff] [blame]4402run_test "Renegotiation: DTLS, client-initiated" \
4403 "$P_SRV debug_level=3 dtls=1 exchanges=2 renegotiation=1" \
4404 "$P_CLI debug_level=3 dtls=1 exchanges=2 renegotiation=1 renegotiate=1" \
4405 0 \
4406 -c "client hello, adding renegotiation extension" \
4407 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4408 -s "found renegotiation extension" \
4409 -s "server hello, secure renegotiation extension" \
4410 -c "found renegotiation extension" \
4411 -c "=> renegotiate" \
4412 -s "=> renegotiate" \
4413 -S "write hello request"
4414
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4415requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardc392b242014-08-19 17:53:11 +0200[diff] [blame]4416run_test "Renegotiation: DTLS, server-initiated" \
4417 "$P_SRV debug_level=3 dtls=1 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnarddf9a0a82014-10-02 14:17:18 +0200[diff] [blame]4418 "$P_CLI debug_level=3 dtls=1 exchanges=2 renegotiation=1 \
4419 read_timeout=1000 max_resend=2" \
Manuel Pégourié-Gonnardc392b242014-08-19 17:53:11 +0200[diff] [blame]4420 0 \
4421 -c "client hello, adding renegotiation extension" \
4422 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4423 -s "found renegotiation extension" \
4424 -s "server hello, secure renegotiation extension" \
4425 -c "found renegotiation extension" \
4426 -c "=> renegotiate" \
4427 -s "=> renegotiate" \
4428 -s "write hello request"
4429
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4430requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Andres AG692ad842017-01-19 16:30:57 +0000[diff] [blame]4431run_test "Renegotiation: DTLS, renego_period overflow" \
4432 "$P_SRV debug_level=3 dtls=1 exchanges=4 renegotiation=1 renego_period=18446462598732840962 auth_mode=optional" \
4433 "$P_CLI debug_level=3 dtls=1 exchanges=4 renegotiation=1" \
4434 0 \
4435 -c "client hello, adding renegotiation extension" \
4436 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
4437 -s "found renegotiation extension" \
4438 -s "server hello, secure renegotiation extension" \
4439 -s "record counter limit reached: renegotiate" \
4440 -c "=> renegotiate" \
4441 -s "=> renegotiate" \
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4442 -s "write hello request"
Andres AG692ad842017-01-19 16:30:57 +0000[diff] [blame]4443
Manuel Pégourié-Gonnard96999962015-02-17 16:02:37 +0000[diff] [blame]4444requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]4445requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardf1499f62014-08-31 17:13:13 +0200[diff] [blame]4446run_test "Renegotiation: DTLS, gnutls server, client-initiated" \
4447 "$G_SRV -u --mtu 4096" \
4448 "$P_CLI debug_level=3 dtls=1 exchanges=1 renegotiation=1 renegotiate=1" \
4449 0 \
4450 -c "client hello, adding renegotiation extension" \
4451 -c "found renegotiation extension" \
4452 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4453 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardf1499f62014-08-31 17:13:13 +0200[diff] [blame]4454 -C "error" \
4455 -s "Extra-header:"
4456
Shaun Case0e7791f2021-12-20 21:14:10 -0800[diff] [blame]4457# Test for the "secure renegotiation" extension only (no actual renegotiation)
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4458
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]4459requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4460run_test "Renego ext: gnutls server strict, client default" \
4461 "$G_SRV --priority=NORMAL:%SAFE_RENEGOTIATION" \
4462 "$P_CLI debug_level=3" \
4463 0 \
4464 -c "found renegotiation extension" \
4465 -C "error" \
4466 -c "HTTP/1.0 200 [Oo][Kk]"
4467
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]4468requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4469run_test "Renego ext: gnutls server unsafe, client default" \
4470 "$G_SRV --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION" \
4471 "$P_CLI debug_level=3" \
4472 0 \
4473 -C "found renegotiation extension" \
4474 -C "error" \
4475 -c "HTTP/1.0 200 [Oo][Kk]"
4476
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]4477requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4478run_test "Renego ext: gnutls server unsafe, client break legacy" \
4479 "$G_SRV --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION" \
4480 "$P_CLI debug_level=3 allow_legacy=-1" \
4481 1 \
4482 -C "found renegotiation extension" \
4483 -c "error" \
4484 -C "HTTP/1.0 200 [Oo][Kk]"
4485
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]4486requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4487run_test "Renego ext: gnutls client strict, server default" \
4488 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4489 "$G_CLI --priority=NORMAL:%SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4490 0 \
4491 -s "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
4492 -s "server hello, secure renegotiation extension"
4493
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]4494requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4495run_test "Renego ext: gnutls client unsafe, server default" \
4496 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4497 "$G_CLI --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4498 0 \
4499 -S "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
4500 -S "server hello, secure renegotiation extension"
4501
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]4502requires_gnutls
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4503run_test "Renego ext: gnutls client unsafe, server break legacy" \
4504 "$P_SRV debug_level=3 allow_legacy=-1" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4505 "$G_CLI --priority=NORMAL:%DISABLE_SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]4506 1 \
4507 -S "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
4508 -S "server hello, secure renegotiation extension"
4509
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]4510# Tests for silently dropping trailing extra bytes in .der certificates
4511
4512requires_gnutls
4513run_test "DER format: no trailing bytes" \
4514 "$P_SRV crt_file=data_files/server5-der0.crt \
4515 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4516 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]4517 0 \
4518 -c "Handshake was completed" \
4519
4520requires_gnutls
4521run_test "DER format: with a trailing zero byte" \
4522 "$P_SRV crt_file=data_files/server5-der1a.crt \
4523 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4524 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]4525 0 \
4526 -c "Handshake was completed" \
4527
4528requires_gnutls
4529run_test "DER format: with a trailing random byte" \
4530 "$P_SRV crt_file=data_files/server5-der1b.crt \
4531 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4532 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]4533 0 \
4534 -c "Handshake was completed" \
4535
4536requires_gnutls
4537run_test "DER format: with 2 trailing random bytes" \
4538 "$P_SRV crt_file=data_files/server5-der2.crt \
4539 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4540 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]4541 0 \
4542 -c "Handshake was completed" \
4543
4544requires_gnutls
4545run_test "DER format: with 4 trailing random bytes" \
4546 "$P_SRV crt_file=data_files/server5-der4.crt \
4547 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4548 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]4549 0 \
4550 -c "Handshake was completed" \
4551
4552requires_gnutls
4553run_test "DER format: with 8 trailing random bytes" \
4554 "$P_SRV crt_file=data_files/server5-der8.crt \
4555 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4556 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]4557 0 \
4558 -c "Handshake was completed" \
4559
4560requires_gnutls
4561run_test "DER format: with 9 trailing random bytes" \
4562 "$P_SRV crt_file=data_files/server5-der9.crt \
4563 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]4564 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]4565 0 \
4566 -c "Handshake was completed" \
4567
Jarno Lamsaf7a7f9e2019-04-01 15:11:54 +0300[diff] [blame]4568# Tests for auth_mode, there are duplicated tests using ca callback for authentication
4569# When updating these tests, modify the matching authentication tests accordingly
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4570
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4571run_test "Authentication: server badcert, client required" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4572 "$P_SRV crt_file=data_files/server5-badsign.crt \
4573 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4574 "$P_CLI debug_level=1 auth_mode=required" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4575 1 \
4576 -c "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]4577 -c "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4578 -c "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4579 -c "X509 - Certificate verification failed"
4580
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4581run_test "Authentication: server badcert, client optional" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4582 "$P_SRV crt_file=data_files/server5-badsign.crt \
4583 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4584 "$P_CLI debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4585 0 \
4586 -c "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]4587 -c "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4588 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4589 -C "X509 - Certificate verification failed"
4590
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]4591run_test "Authentication: server goodcert, client optional, no trusted CA" \
4592 "$P_SRV" \
4593 "$P_CLI debug_level=3 auth_mode=optional ca_file=none ca_path=none" \
4594 0 \
4595 -c "x509_verify_cert() returned" \
4596 -c "! The certificate is not correctly signed by the trusted CA" \
4597 -c "! Certificate verification flags"\
4598 -C "! mbedtls_ssl_handshake returned" \
4599 -C "X509 - Certificate verification failed" \
4600 -C "SSL - No CA Chain is set, but required to operate"
4601
4602run_test "Authentication: server goodcert, client required, no trusted CA" \
4603 "$P_SRV" \
4604 "$P_CLI debug_level=3 auth_mode=required ca_file=none ca_path=none" \
4605 1 \
4606 -c "x509_verify_cert() returned" \
4607 -c "! The certificate is not correctly signed by the trusted CA" \
4608 -c "! Certificate verification flags"\
4609 -c "! mbedtls_ssl_handshake returned" \
4610 -c "SSL - No CA Chain is set, but required to operate"
4611
4612# The purpose of the next two tests is to test the client's behaviour when receiving a server
4613# certificate with an unsupported elliptic curve. This should usually not happen because
4614# the client informs the server about the supported curves - it does, though, in the
4615# corner case of a static ECDH suite, because the server doesn't check the curve on that
4616# occasion (to be fixed). If that bug's fixed, the test needs to be altered to use a
4617# different means to have the server ignoring the client's supported curve list.
4618
4619requires_config_enabled MBEDTLS_ECP_C
4620run_test "Authentication: server ECDH p256v1, client required, p256v1 unsupported" \
4621 "$P_SRV debug_level=1 key_file=data_files/server5.key \
4622 crt_file=data_files/server5.ku-ka.crt" \
4623 "$P_CLI debug_level=3 auth_mode=required curves=secp521r1" \
4624 1 \
4625 -c "bad certificate (EC key curve)"\
4626 -c "! Certificate verification flags"\
4627 -C "bad server certificate (ECDH curve)" # Expect failure at earlier verification stage
4628
4629requires_config_enabled MBEDTLS_ECP_C
4630run_test "Authentication: server ECDH p256v1, client optional, p256v1 unsupported" \
4631 "$P_SRV debug_level=1 key_file=data_files/server5.key \
4632 crt_file=data_files/server5.ku-ka.crt" \
4633 "$P_CLI debug_level=3 auth_mode=optional curves=secp521r1" \
4634 1 \
4635 -c "bad certificate (EC key curve)"\
4636 -c "! Certificate verification flags"\
4637 -c "bad server certificate (ECDH curve)" # Expect failure only at ECDH params check
4638
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4639run_test "Authentication: server badcert, client none" \
Manuel Pégourié-Gonnardc1da6642014-02-25 14:18:30 +0100[diff] [blame]4640 "$P_SRV crt_file=data_files/server5-badsign.crt \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4641 key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4642 "$P_CLI debug_level=1 auth_mode=none" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4643 0 \
4644 -C "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]4645 -C "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4646 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4647 -C "X509 - Certificate verification failed"
4648
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]4649run_test "Authentication: client SHA256, server required" \
4650 "$P_SRV auth_mode=required" \
4651 "$P_CLI debug_level=3 crt_file=data_files/server6.crt \
4652 key_file=data_files/server6.key \
4653 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
4654 0 \
4655 -c "Supported Signature Algorithm found: 4," \
4656 -c "Supported Signature Algorithm found: 5,"
4657
4658run_test "Authentication: client SHA384, server required" \
4659 "$P_SRV auth_mode=required" \
4660 "$P_CLI debug_level=3 crt_file=data_files/server6.crt \
4661 key_file=data_files/server6.key \
4662 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
4663 0 \
4664 -c "Supported Signature Algorithm found: 4," \
4665 -c "Supported Signature Algorithm found: 5,"
4666
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]4667run_test "Authentication: client has no cert, server required (SSLv3)" \
4668 "$P_SRV debug_level=3 min_version=ssl3 auth_mode=required" \
4669 "$P_CLI debug_level=3 force_version=ssl3 crt_file=none \
4670 key_file=data_files/server5.key" \
4671 1 \
4672 -S "skip write certificate request" \
4673 -C "skip parse certificate request" \
4674 -c "got a certificate request" \
4675 -c "got no certificate to send" \
4676 -S "x509_verify_cert() returned" \
4677 -s "client has no certificate" \
4678 -s "! mbedtls_ssl_handshake returned" \
4679 -c "! mbedtls_ssl_handshake returned" \
4680 -s "No client certification received from the client, but required by the authentication mode"
4681
4682run_test "Authentication: client has no cert, server required (TLS)" \
4683 "$P_SRV debug_level=3 auth_mode=required" \
4684 "$P_CLI debug_level=3 crt_file=none \
4685 key_file=data_files/server5.key" \
4686 1 \
4687 -S "skip write certificate request" \
4688 -C "skip parse certificate request" \
4689 -c "got a certificate request" \
4690 -c "= write certificate$" \
4691 -C "skip write certificate$" \
4692 -S "x509_verify_cert() returned" \
4693 -s "client has no certificate" \
4694 -s "! mbedtls_ssl_handshake returned" \
4695 -c "! mbedtls_ssl_handshake returned" \
4696 -s "No client certification received from the client, but required by the authentication mode"
4697
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4698run_test "Authentication: client badcert, server required" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4699 "$P_SRV debug_level=3 auth_mode=required" \
4700 "$P_CLI debug_level=3 crt_file=data_files/server5-badsign.crt \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4701 key_file=data_files/server5.key" \
4702 1 \
4703 -S "skip write certificate request" \
4704 -C "skip parse certificate request" \
4705 -c "got a certificate request" \
4706 -C "skip write certificate" \
4707 -C "skip write certificate verify" \
4708 -S "skip parse certificate verify" \
4709 -s "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]4710 -s "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4711 -s "! mbedtls_ssl_handshake returned" \
Gilles Peskine1cc8e342017-05-03 16:28:34 +0200[diff] [blame]4712 -s "send alert level=2 message=48" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4713 -c "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4714 -s "X509 - Certificate verification failed"
Gilles Peskine1cc8e342017-05-03 16:28:34 +0200[diff] [blame]4715# We don't check that the client receives the alert because it might
4716# detect that its write end of the connection is closed and abort
4717# before reading the alert message.
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4718
Gilles Peskine8c681b72022-01-07 23:10:56 +0100[diff] [blame]4719run_test "Authentication: client cert self-signed and trusted, server required" \
4720 "$P_SRV debug_level=3 auth_mode=required ca_file=data_files/server5-selfsigned.crt" \
4721 "$P_CLI debug_level=3 crt_file=data_files/server5-selfsigned.crt \
4722 key_file=data_files/server5.key" \
4723 0 \
4724 -S "skip write certificate request" \
4725 -C "skip parse certificate request" \
4726 -c "got a certificate request" \
4727 -C "skip write certificate" \
4728 -C "skip write certificate verify" \
4729 -S "skip parse certificate verify" \
4730 -S "x509_verify_cert() returned" \
4731 -S "! The certificate is not correctly signed" \
4732 -S "X509 - Certificate verification failed"
4733
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]4734run_test "Authentication: client cert not trusted, server required" \
4735 "$P_SRV debug_level=3 auth_mode=required" \
4736 "$P_CLI debug_level=3 crt_file=data_files/server5-selfsigned.crt \
4737 key_file=data_files/server5.key" \
4738 1 \
4739 -S "skip write certificate request" \
4740 -C "skip parse certificate request" \
4741 -c "got a certificate request" \
4742 -C "skip write certificate" \
4743 -C "skip write certificate verify" \
4744 -S "skip parse certificate verify" \
4745 -s "x509_verify_cert() returned" \
4746 -s "! The certificate is not correctly signed by the trusted CA" \
4747 -s "! mbedtls_ssl_handshake returned" \
4748 -c "! mbedtls_ssl_handshake returned" \
4749 -s "X509 - Certificate verification failed"
4750
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4751run_test "Authentication: client badcert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4752 "$P_SRV debug_level=3 auth_mode=optional" \
4753 "$P_CLI debug_level=3 crt_file=data_files/server5-badsign.crt \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4754 key_file=data_files/server5.key" \
4755 0 \
4756 -S "skip write certificate request" \
4757 -C "skip parse certificate request" \
4758 -c "got a certificate request" \
4759 -C "skip write certificate" \
4760 -C "skip write certificate verify" \
4761 -S "skip parse certificate verify" \
4762 -s "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]4763 -s "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4764 -S "! mbedtls_ssl_handshake returned" \
4765 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4766 -S "X509 - Certificate verification failed"
4767
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4768run_test "Authentication: client badcert, server none" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4769 "$P_SRV debug_level=3 auth_mode=none" \
4770 "$P_CLI debug_level=3 crt_file=data_files/server5-badsign.crt \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4771 key_file=data_files/server5.key" \
4772 0 \
4773 -s "skip write certificate request" \
4774 -C "skip parse certificate request" \
4775 -c "got no certificate request" \
4776 -c "skip write certificate" \
4777 -c "skip write certificate verify" \
4778 -s "skip parse certificate verify" \
4779 -S "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]4780 -S "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4781 -S "! mbedtls_ssl_handshake returned" \
4782 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]4783 -S "X509 - Certificate verification failed"
4784
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4785run_test "Authentication: client no cert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4786 "$P_SRV debug_level=3 auth_mode=optional" \
4787 "$P_CLI debug_level=3 crt_file=none key_file=none" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]4788 0 \
4789 -S "skip write certificate request" \
4790 -C "skip parse certificate request" \
4791 -c "got a certificate request" \
4792 -C "skip write certificate$" \
4793 -C "got no certificate to send" \
4794 -S "SSLv3 client has no certificate" \
4795 -c "skip write certificate verify" \
4796 -s "skip parse certificate verify" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]4797 -s "! Certificate was missing" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4798 -S "! mbedtls_ssl_handshake returned" \
4799 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]4800 -S "X509 - Certificate verification failed"
4801
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4802run_test "Authentication: openssl client no cert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4803 "$P_SRV debug_level=3 auth_mode=optional" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]4804 "$O_CLI" \
4805 0 \
4806 -S "skip write certificate request" \
4807 -s "skip parse certificate verify" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]4808 -s "! Certificate was missing" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4809 -S "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]4810 -S "X509 - Certificate verification failed"
4811
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4812run_test "Authentication: client no cert, openssl server optional" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]4813 "$O_SRV -verify 10" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4814 "$P_CLI debug_level=3 crt_file=none key_file=none" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]4815 0 \
4816 -C "skip parse certificate request" \
4817 -c "got a certificate request" \
4818 -C "skip write certificate$" \
4819 -c "skip write certificate verify" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4820 -C "! mbedtls_ssl_handshake returned"
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]4821
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]4822run_test "Authentication: client no cert, openssl server required" \
4823 "$O_SRV -Verify 10" \
4824 "$P_CLI debug_level=3 crt_file=none key_file=none" \
4825 1 \
4826 -C "skip parse certificate request" \
4827 -c "got a certificate request" \
4828 -C "skip write certificate$" \
4829 -c "skip write certificate verify" \
4830 -c "! mbedtls_ssl_handshake returned"
4831
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4832run_test "Authentication: client no cert, ssl3" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4833 "$P_SRV debug_level=3 auth_mode=optional force_version=ssl3" \
Manuel Pégourié-Gonnard448ea502015-01-12 11:40:14 +0100[diff] [blame]4834 "$P_CLI debug_level=3 crt_file=none key_file=none min_version=ssl3" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]4835 0 \
4836 -S "skip write certificate request" \
4837 -C "skip parse certificate request" \
4838 -c "got a certificate request" \
4839 -C "skip write certificate$" \
4840 -c "skip write certificate verify" \
4841 -c "got no certificate to send" \
4842 -s "SSLv3 client has no certificate" \
4843 -s "skip parse certificate verify" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]4844 -s "! Certificate was missing" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]4845 -S "! mbedtls_ssl_handshake returned" \
4846 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]4847 -S "X509 - Certificate verification failed"
4848
Yuto Takanoccdd25c2021-07-02 13:05:15 +0100[diff] [blame]4849# This script assumes that MBEDTLS_X509_MAX_INTERMEDIATE_CA has its default
4850# value, defined here as MAX_IM_CA. Some test cases will be skipped if the
4851# library is configured with a different value.
Hanno Beckera6bca9f2017-07-26 13:35:11 +0100[diff] [blame]4852
Simon Butcherbcfa6f42017-07-28 15:59:35 +0100[diff] [blame]4853MAX_IM_CA='8'
Hanno Beckera6bca9f2017-07-26 13:35:11 +0100[diff] [blame]4854
Yuto Takanoccdd25c2021-07-02 13:05:15 +0100[diff] [blame]4855# The tests for the max_int tests can pass with any number higher than MAX_IM_CA
4856# because only a chain of MAX_IM_CA length is tested. Equally, the max_int+1
4857# tests can pass with any number less than MAX_IM_CA. However, stricter preconditions
4858# are in place so that the semantics are consistent with the test description.
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]4859requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4860requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4861run_test "Authentication: server max_int chain, client default" \
4862 "$P_SRV crt_file=data_files/dir-maxpath/c09.pem \
4863 key_file=data_files/dir-maxpath/09.key" \
4864 "$P_CLI server_name=CA09 ca_file=data_files/dir-maxpath/00.crt" \
4865 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]4866 -C "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4867
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]4868requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4869requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4870run_test "Authentication: server max_int+1 chain, client default" \
4871 "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
4872 key_file=data_files/dir-maxpath/10.key" \
4873 "$P_CLI server_name=CA10 ca_file=data_files/dir-maxpath/00.crt" \
4874 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]4875 -c "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4876
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]4877requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4878requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4879run_test "Authentication: server max_int+1 chain, client optional" \
4880 "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
4881 key_file=data_files/dir-maxpath/10.key" \
4882 "$P_CLI server_name=CA10 ca_file=data_files/dir-maxpath/00.crt \
4883 auth_mode=optional" \
4884 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]4885 -c "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4886
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]4887requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4888requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4889run_test "Authentication: server max_int+1 chain, client none" \
4890 "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
4891 key_file=data_files/dir-maxpath/10.key" \
4892 "$P_CLI server_name=CA10 ca_file=data_files/dir-maxpath/00.crt \
4893 auth_mode=none" \
4894 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]4895 -C "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4896
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]4897requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4898requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4899run_test "Authentication: client max_int+1 chain, server default" \
4900 "$P_SRV ca_file=data_files/dir-maxpath/00.crt" \
4901 "$P_CLI crt_file=data_files/dir-maxpath/c10.pem \
4902 key_file=data_files/dir-maxpath/10.key" \
4903 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]4904 -S "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4905
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]4906requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4907requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4908run_test "Authentication: client max_int+1 chain, server optional" \
4909 "$P_SRV ca_file=data_files/dir-maxpath/00.crt auth_mode=optional" \
4910 "$P_CLI crt_file=data_files/dir-maxpath/c10.pem \
4911 key_file=data_files/dir-maxpath/10.key" \
4912 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]4913 -s "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4914
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]4915requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4916requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4917run_test "Authentication: client max_int+1 chain, server required" \
4918 "$P_SRV ca_file=data_files/dir-maxpath/00.crt auth_mode=required" \
4919 "$P_CLI crt_file=data_files/dir-maxpath/c10.pem \
4920 key_file=data_files/dir-maxpath/10.key" \
4921 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]4922 -s "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4923
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]4924requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4925requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4926run_test "Authentication: client max_int chain, server required" \
4927 "$P_SRV ca_file=data_files/dir-maxpath/00.crt auth_mode=required" \
4928 "$P_CLI crt_file=data_files/dir-maxpath/c09.pem \
4929 key_file=data_files/dir-maxpath/09.key" \
4930 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]4931 -S "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]4932
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]4933# Tests for CA list in CertificateRequest messages
4934
4935run_test "Authentication: send CA list in CertificateRequest (default)" \
4936 "$P_SRV debug_level=3 auth_mode=required" \
4937 "$P_CLI crt_file=data_files/server6.crt \
4938 key_file=data_files/server6.key" \
4939 0 \
4940 -s "requested DN"
4941
4942run_test "Authentication: do not send CA list in CertificateRequest" \
4943 "$P_SRV debug_level=3 auth_mode=required cert_req_ca_list=0" \
4944 "$P_CLI crt_file=data_files/server6.crt \
4945 key_file=data_files/server6.key" \
4946 0 \
4947 -S "requested DN"
4948
4949run_test "Authentication: send CA list in CertificateRequest, client self signed" \
4950 "$P_SRV debug_level=3 auth_mode=required cert_req_ca_list=0" \
4951 "$P_CLI debug_level=3 crt_file=data_files/server5-selfsigned.crt \
4952 key_file=data_files/server5.key" \
4953 1 \
4954 -S "requested DN" \
4955 -s "x509_verify_cert() returned" \
4956 -s "! The certificate is not correctly signed by the trusted CA" \
4957 -s "! mbedtls_ssl_handshake returned" \
4958 -c "! mbedtls_ssl_handshake returned" \
4959 -s "X509 - Certificate verification failed"
4960
Jarno Lamsaf7a7f9e2019-04-01 15:11:54 +0300[diff] [blame]4961# Tests for auth_mode, using CA callback, these are duplicated from the authentication tests
4962# When updating these tests, modify the matching authentication tests accordingly
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]4963
4964requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
4965run_test "Authentication, CA callback: server badcert, client required" \
4966 "$P_SRV crt_file=data_files/server5-badsign.crt \
4967 key_file=data_files/server5.key" \
4968 "$P_CLI ca_callback=1 debug_level=3 auth_mode=required" \
4969 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]4970 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]4971 -c "x509_verify_cert() returned" \
4972 -c "! The certificate is not correctly signed by the trusted CA" \
4973 -c "! mbedtls_ssl_handshake returned" \
4974 -c "X509 - Certificate verification failed"
4975
4976requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
4977run_test "Authentication, CA callback: server badcert, client optional" \
4978 "$P_SRV crt_file=data_files/server5-badsign.crt \
4979 key_file=data_files/server5.key" \
4980 "$P_CLI ca_callback=1 debug_level=3 auth_mode=optional" \
4981 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]4982 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]4983 -c "x509_verify_cert() returned" \
4984 -c "! The certificate is not correctly signed by the trusted CA" \
4985 -C "! mbedtls_ssl_handshake returned" \
4986 -C "X509 - Certificate verification failed"
4987
4988# The purpose of the next two tests is to test the client's behaviour when receiving a server
4989# certificate with an unsupported elliptic curve. This should usually not happen because
4990# the client informs the server about the supported curves - it does, though, in the
4991# corner case of a static ECDH suite, because the server doesn't check the curve on that
4992# occasion (to be fixed). If that bug's fixed, the test needs to be altered to use a
4993# different means to have the server ignoring the client's supported curve list.
4994
4995requires_config_enabled MBEDTLS_ECP_C
4996requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
4997run_test "Authentication, CA callback: server ECDH p256v1, client required, p256v1 unsupported" \
4998 "$P_SRV debug_level=1 key_file=data_files/server5.key \
4999 crt_file=data_files/server5.ku-ka.crt" \
5000 "$P_CLI ca_callback=1 debug_level=3 auth_mode=required curves=secp521r1" \
5001 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5002 -c "use CA callback for X.509 CRT verification" \
5003 -c "bad certificate (EC key curve)" \
5004 -c "! Certificate verification flags" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5005 -C "bad server certificate (ECDH curve)" # Expect failure at earlier verification stage
5006
5007requires_config_enabled MBEDTLS_ECP_C
5008requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5009run_test "Authentication, CA callback: server ECDH p256v1, client optional, p256v1 unsupported" \
5010 "$P_SRV debug_level=1 key_file=data_files/server5.key \
5011 crt_file=data_files/server5.ku-ka.crt" \
5012 "$P_CLI ca_callback=1 debug_level=3 auth_mode=optional curves=secp521r1" \
5013 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5014 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5015 -c "bad certificate (EC key curve)"\
5016 -c "! Certificate verification flags"\
5017 -c "bad server certificate (ECDH curve)" # Expect failure only at ECDH params check
5018
5019requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5020run_test "Authentication, CA callback: client SHA256, server required" \
5021 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
5022 "$P_CLI debug_level=3 crt_file=data_files/server6.crt \
5023 key_file=data_files/server6.key \
5024 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
5025 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5026 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5027 -c "Supported Signature Algorithm found: 4," \
5028 -c "Supported Signature Algorithm found: 5,"
5029
5030requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5031run_test "Authentication, CA callback: client SHA384, server required" \
5032 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
5033 "$P_CLI debug_level=3 crt_file=data_files/server6.crt \
5034 key_file=data_files/server6.key \
5035 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
5036 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5037 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5038 -c "Supported Signature Algorithm found: 4," \
5039 -c "Supported Signature Algorithm found: 5,"
5040
5041requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5042run_test "Authentication, CA callback: client badcert, server required" \
5043 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
5044 "$P_CLI debug_level=3 crt_file=data_files/server5-badsign.crt \
5045 key_file=data_files/server5.key" \
5046 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5047 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5048 -S "skip write certificate request" \
5049 -C "skip parse certificate request" \
5050 -c "got a certificate request" \
5051 -C "skip write certificate" \
5052 -C "skip write certificate verify" \
5053 -S "skip parse certificate verify" \
5054 -s "x509_verify_cert() returned" \
5055 -s "! The certificate is not correctly signed by the trusted CA" \
5056 -s "! mbedtls_ssl_handshake returned" \
5057 -s "send alert level=2 message=48" \
5058 -c "! mbedtls_ssl_handshake returned" \
5059 -s "X509 - Certificate verification failed"
5060# We don't check that the client receives the alert because it might
5061# detect that its write end of the connection is closed and abort
5062# before reading the alert message.
5063
5064requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5065run_test "Authentication, CA callback: client cert not trusted, server required" \
5066 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
5067 "$P_CLI debug_level=3 crt_file=data_files/server5-selfsigned.crt \
5068 key_file=data_files/server5.key" \
5069 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5070 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5071 -S "skip write certificate request" \
5072 -C "skip parse certificate request" \
5073 -c "got a certificate request" \
5074 -C "skip write certificate" \
5075 -C "skip write certificate verify" \
5076 -S "skip parse certificate verify" \
5077 -s "x509_verify_cert() returned" \
5078 -s "! The certificate is not correctly signed by the trusted CA" \
5079 -s "! mbedtls_ssl_handshake returned" \
5080 -c "! mbedtls_ssl_handshake returned" \
5081 -s "X509 - Certificate verification failed"
5082
5083requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5084run_test "Authentication, CA callback: client badcert, server optional" \
5085 "$P_SRV ca_callback=1 debug_level=3 auth_mode=optional" \
5086 "$P_CLI debug_level=3 crt_file=data_files/server5-badsign.crt \
5087 key_file=data_files/server5.key" \
5088 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5089 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5090 -S "skip write certificate request" \
5091 -C "skip parse certificate request" \
5092 -c "got a certificate request" \
5093 -C "skip write certificate" \
5094 -C "skip write certificate verify" \
5095 -S "skip parse certificate verify" \
5096 -s "x509_verify_cert() returned" \
5097 -s "! The certificate is not correctly signed by the trusted CA" \
5098 -S "! mbedtls_ssl_handshake returned" \
5099 -C "! mbedtls_ssl_handshake returned" \
5100 -S "X509 - Certificate verification failed"
5101
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]5102requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5103requires_full_size_output_buffer
5104requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5105run_test "Authentication, CA callback: server max_int chain, client default" \
5106 "$P_SRV crt_file=data_files/dir-maxpath/c09.pem \
5107 key_file=data_files/dir-maxpath/09.key" \
5108 "$P_CLI ca_callback=1 debug_level=3 server_name=CA09 ca_file=data_files/dir-maxpath/00.crt" \
5109 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5110 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5111 -C "X509 - A fatal error occurred"
5112
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]5113requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5114requires_full_size_output_buffer
5115requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5116run_test "Authentication, CA callback: server max_int+1 chain, client default" \
5117 "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
5118 key_file=data_files/dir-maxpath/10.key" \
5119 "$P_CLI debug_level=3 ca_callback=1 server_name=CA10 ca_file=data_files/dir-maxpath/00.crt" \
5120 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5121 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5122 -c "X509 - A fatal error occurred"
5123
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]5124requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5125requires_full_size_output_buffer
5126requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5127run_test "Authentication, CA callback: server max_int+1 chain, client optional" \
5128 "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
5129 key_file=data_files/dir-maxpath/10.key" \
5130 "$P_CLI ca_callback=1 server_name=CA10 ca_file=data_files/dir-maxpath/00.crt \
5131 debug_level=3 auth_mode=optional" \
5132 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5133 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5134 -c "X509 - A fatal error occurred"
5135
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]5136requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5137requires_full_size_output_buffer
5138requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5139run_test "Authentication, CA callback: client max_int+1 chain, server optional" \
5140 "$P_SRV ca_callback=1 debug_level=3 ca_file=data_files/dir-maxpath/00.crt auth_mode=optional" \
5141 "$P_CLI crt_file=data_files/dir-maxpath/c10.pem \
5142 key_file=data_files/dir-maxpath/10.key" \
5143 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5144 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5145 -s "X509 - A fatal error occurred"
5146
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]5147requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5148requires_full_size_output_buffer
5149requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5150run_test "Authentication, CA callback: client max_int+1 chain, server required" \
5151 "$P_SRV ca_callback=1 debug_level=3 ca_file=data_files/dir-maxpath/00.crt auth_mode=required" \
5152 "$P_CLI crt_file=data_files/dir-maxpath/c10.pem \
5153 key_file=data_files/dir-maxpath/10.key" \
5154 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5155 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5156 -s "X509 - A fatal error occurred"
5157
Yuto Takano8a693ef2021-07-02 13:10:41 +0100[diff] [blame]5158requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5159requires_full_size_output_buffer
5160requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
5161run_test "Authentication, CA callback: client max_int chain, server required" \
5162 "$P_SRV ca_callback=1 debug_level=3 ca_file=data_files/dir-maxpath/00.crt auth_mode=required" \
5163 "$P_CLI crt_file=data_files/dir-maxpath/c09.pem \
5164 key_file=data_files/dir-maxpath/09.key" \
5165 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]5166 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]5167 -S "X509 - A fatal error occurred"
5168
Shaun Case0e7791f2021-12-20 21:14:10 -0800[diff] [blame]5169# Tests for certificate selection based on SHA version
Manuel Pégourié-Gonnarddf331a52015-01-08 16:43:07 +0100[diff] [blame]5170
5171run_test "Certificate hash: client TLS 1.2 -> SHA-2" \
5172 "$P_SRV crt_file=data_files/server5.crt \
5173 key_file=data_files/server5.key \
5174 crt_file2=data_files/server5-sha1.crt \
5175 key_file2=data_files/server5.key" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]5176 "$P_CLI force_version=tls12" \
Manuel Pégourié-Gonnarddf331a52015-01-08 16:43:07 +0100[diff] [blame]5177 0 \
5178 -c "signed using.*ECDSA with SHA256" \
5179 -C "signed using.*ECDSA with SHA1"
5180
5181run_test "Certificate hash: client TLS 1.1 -> SHA-1" \
5182 "$P_SRV crt_file=data_files/server5.crt \
5183 key_file=data_files/server5.key \
5184 crt_file2=data_files/server5-sha1.crt \
5185 key_file2=data_files/server5.key" \
5186 "$P_CLI force_version=tls1_1" \
5187 0 \
5188 -C "signed using.*ECDSA with SHA256" \
5189 -c "signed using.*ECDSA with SHA1"
5190
5191run_test "Certificate hash: client TLS 1.0 -> SHA-1" \
5192 "$P_SRV crt_file=data_files/server5.crt \
5193 key_file=data_files/server5.key \
5194 crt_file2=data_files/server5-sha1.crt \
5195 key_file2=data_files/server5.key" \
5196 "$P_CLI force_version=tls1" \
5197 0 \
5198 -C "signed using.*ECDSA with SHA256" \
5199 -c "signed using.*ECDSA with SHA1"
5200
5201run_test "Certificate hash: client TLS 1.1, no SHA-1 -> SHA-2 (order 1)" \
5202 "$P_SRV crt_file=data_files/server5.crt \
5203 key_file=data_files/server5.key \
5204 crt_file2=data_files/server6.crt \
5205 key_file2=data_files/server6.key" \
5206 "$P_CLI force_version=tls1_1" \
5207 0 \
5208 -c "serial number.*09" \
5209 -c "signed using.*ECDSA with SHA256" \
5210 -C "signed using.*ECDSA with SHA1"
5211
5212run_test "Certificate hash: client TLS 1.1, no SHA-1 -> SHA-2 (order 2)" \
5213 "$P_SRV crt_file=data_files/server6.crt \
5214 key_file=data_files/server6.key \
5215 crt_file2=data_files/server5.crt \
5216 key_file2=data_files/server5.key" \
5217 "$P_CLI force_version=tls1_1" \
5218 0 \
5219 -c "serial number.*0A" \
5220 -c "signed using.*ECDSA with SHA256" \
5221 -C "signed using.*ECDSA with SHA1"
5222
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]5223# tests for SNI
5224
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5225run_test "SNI: no SNI callback" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5226 "$P_SRV debug_level=3 \
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]5227 crt_file=data_files/server5.crt key_file=data_files/server5.key" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5228 "$P_CLI server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]5229 0 \
5230 -S "parse ServerName extension" \
5231 -c "issuer name *: C=NL, O=PolarSSL, CN=Polarssl Test EC CA" \
5232 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]5233
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5234run_test "SNI: matching cert 1" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5235 "$P_SRV debug_level=3 \
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]5236 crt_file=data_files/server5.crt key_file=data_files/server5.key \
Manuel Pégourié-Gonnard4d6f1782015-06-19 14:40:39 +0200[diff] [blame]5237 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5238 "$P_CLI server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]5239 0 \
5240 -s "parse ServerName extension" \
5241 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
5242 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]5243
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5244run_test "SNI: matching cert 2" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5245 "$P_SRV debug_level=3 \
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]5246 crt_file=data_files/server5.crt key_file=data_files/server5.key \
Manuel Pégourié-Gonnard4d6f1782015-06-19 14:40:39 +0200[diff] [blame]5247 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5248 "$P_CLI server_name=polarssl.example" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]5249 0 \
5250 -s "parse ServerName extension" \
5251 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
5252 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]5253
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5254run_test "SNI: no matching cert" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5255 "$P_SRV debug_level=3 \
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]5256 crt_file=data_files/server5.crt key_file=data_files/server5.key \
Manuel Pégourié-Gonnard4d6f1782015-06-19 14:40:39 +0200[diff] [blame]5257 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]5258 "$P_CLI server_name=nonesuch.example" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]5259 1 \
5260 -s "parse ServerName extension" \
5261 -s "ssl_sni_wrapper() returned" \
5262 -s "mbedtls_ssl_handshake returned" \
5263 -c "mbedtls_ssl_handshake returned" \
5264 -c "SSL - A fatal alert message was received from our peer"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]5265
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]5266run_test "SNI: client auth no override: optional" \
5267 "$P_SRV debug_level=3 auth_mode=optional \
5268 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5269 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-" \
5270 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]5271 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]5272 -S "skip write certificate request" \
5273 -C "skip parse certificate request" \
5274 -c "got a certificate request" \
5275 -C "skip write certificate" \
5276 -C "skip write certificate verify" \
5277 -S "skip parse certificate verify"
5278
5279run_test "SNI: client auth override: none -> optional" \
5280 "$P_SRV debug_level=3 auth_mode=none \
5281 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5282 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,optional" \
5283 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]5284 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]5285 -S "skip write certificate request" \
5286 -C "skip parse certificate request" \
5287 -c "got a certificate request" \
5288 -C "skip write certificate" \
5289 -C "skip write certificate verify" \
5290 -S "skip parse certificate verify"
5291
5292run_test "SNI: client auth override: optional -> none" \
5293 "$P_SRV debug_level=3 auth_mode=optional \
5294 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5295 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,none" \
5296 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]5297 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]5298 -s "skip write certificate request" \
5299 -C "skip parse certificate request" \
5300 -c "got no certificate request" \
5301 -c "skip write certificate" \
5302 -c "skip write certificate verify" \
5303 -s "skip parse certificate verify"
5304
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]5305run_test "SNI: CA no override" \
5306 "$P_SRV debug_level=3 auth_mode=optional \
5307 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5308 ca_file=data_files/test-ca.crt \
5309 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,required" \
5310 "$P_CLI debug_level=3 server_name=localhost \
5311 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
5312 1 \
5313 -S "skip write certificate request" \
5314 -C "skip parse certificate request" \
5315 -c "got a certificate request" \
5316 -C "skip write certificate" \
5317 -C "skip write certificate verify" \
5318 -S "skip parse certificate verify" \
5319 -s "x509_verify_cert() returned" \
5320 -s "! The certificate is not correctly signed by the trusted CA" \
5321 -S "The certificate has been revoked (is on a CRL)"
5322
5323run_test "SNI: CA override" \
5324 "$P_SRV debug_level=3 auth_mode=optional \
5325 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5326 ca_file=data_files/test-ca.crt \
5327 sni=localhost,data_files/server2.crt,data_files/server2.key,data_files/test-ca2.crt,-,required" \
5328 "$P_CLI debug_level=3 server_name=localhost \
5329 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
5330 0 \
5331 -S "skip write certificate request" \
5332 -C "skip parse certificate request" \
5333 -c "got a certificate request" \
5334 -C "skip write certificate" \
5335 -C "skip write certificate verify" \
5336 -S "skip parse certificate verify" \
5337 -S "x509_verify_cert() returned" \
5338 -S "! The certificate is not correctly signed by the trusted CA" \
5339 -S "The certificate has been revoked (is on a CRL)"
5340
5341run_test "SNI: CA override with CRL" \
5342 "$P_SRV debug_level=3 auth_mode=optional \
5343 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5344 ca_file=data_files/test-ca.crt \
5345 sni=localhost,data_files/server2.crt,data_files/server2.key,data_files/test-ca2.crt,data_files/crl-ec-sha256.pem,required" \
5346 "$P_CLI debug_level=3 server_name=localhost \
5347 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
5348 1 \
5349 -S "skip write certificate request" \
5350 -C "skip parse certificate request" \
5351 -c "got a certificate request" \
5352 -C "skip write certificate" \
5353 -C "skip write certificate verify" \
5354 -S "skip parse certificate verify" \
5355 -s "x509_verify_cert() returned" \
5356 -S "! The certificate is not correctly signed by the trusted CA" \
5357 -s "The certificate has been revoked (is on a CRL)"
5358
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]5359# Tests for SNI and DTLS
5360
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]5361run_test "SNI: DTLS, no SNI callback" \
5362 "$P_SRV debug_level=3 dtls=1 \
5363 crt_file=data_files/server5.crt key_file=data_files/server5.key" \
5364 "$P_CLI server_name=localhost dtls=1" \
5365 0 \
5366 -S "parse ServerName extension" \
5367 -c "issuer name *: C=NL, O=PolarSSL, CN=Polarssl Test EC CA" \
5368 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
5369
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]5370run_test "SNI: DTLS, matching cert 1" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]5371 "$P_SRV debug_level=3 dtls=1 \
5372 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5373 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
5374 "$P_CLI server_name=localhost dtls=1" \
5375 0 \
5376 -s "parse ServerName extension" \
5377 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
5378 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
5379
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]5380run_test "SNI: DTLS, matching cert 2" \
5381 "$P_SRV debug_level=3 dtls=1 \
5382 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5383 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
5384 "$P_CLI server_name=polarssl.example dtls=1" \
5385 0 \
5386 -s "parse ServerName extension" \
5387 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
5388 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
5389
5390run_test "SNI: DTLS, no matching cert" \
5391 "$P_SRV debug_level=3 dtls=1 \
5392 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5393 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
5394 "$P_CLI server_name=nonesuch.example dtls=1" \
5395 1 \
5396 -s "parse ServerName extension" \
5397 -s "ssl_sni_wrapper() returned" \
5398 -s "mbedtls_ssl_handshake returned" \
5399 -c "mbedtls_ssl_handshake returned" \
5400 -c "SSL - A fatal alert message was received from our peer"
5401
5402run_test "SNI: DTLS, client auth no override: optional" \
5403 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
5404 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5405 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-" \
5406 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
5407 0 \
5408 -S "skip write certificate request" \
5409 -C "skip parse certificate request" \
5410 -c "got a certificate request" \
5411 -C "skip write certificate" \
5412 -C "skip write certificate verify" \
5413 -S "skip parse certificate verify"
5414
5415run_test "SNI: DTLS, client auth override: none -> optional" \
5416 "$P_SRV debug_level=3 auth_mode=none dtls=1 \
5417 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5418 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,optional" \
5419 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
5420 0 \
5421 -S "skip write certificate request" \
5422 -C "skip parse certificate request" \
5423 -c "got a certificate request" \
5424 -C "skip write certificate" \
5425 -C "skip write certificate verify" \
5426 -S "skip parse certificate verify"
5427
5428run_test "SNI: DTLS, client auth override: optional -> none" \
5429 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
5430 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5431 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,none" \
5432 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
5433 0 \
5434 -s "skip write certificate request" \
5435 -C "skip parse certificate request" \
5436 -c "got no certificate request" \
5437 -c "skip write certificate" \
5438 -c "skip write certificate verify" \
5439 -s "skip parse certificate verify"
5440
5441run_test "SNI: DTLS, CA no override" \
5442 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
5443 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5444 ca_file=data_files/test-ca.crt \
5445 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,required" \
5446 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
5447 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
5448 1 \
5449 -S "skip write certificate request" \
5450 -C "skip parse certificate request" \
5451 -c "got a certificate request" \
5452 -C "skip write certificate" \
5453 -C "skip write certificate verify" \
5454 -S "skip parse certificate verify" \
5455 -s "x509_verify_cert() returned" \
5456 -s "! The certificate is not correctly signed by the trusted CA" \
5457 -S "The certificate has been revoked (is on a CRL)"
5458
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]5459run_test "SNI: DTLS, CA override" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]5460 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
5461 crt_file=data_files/server5.crt key_file=data_files/server5.key \
5462 ca_file=data_files/test-ca.crt \
5463 sni=localhost,data_files/server2.crt,data_files/server2.key,data_files/test-ca2.crt,-,required" \
5464 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
5465 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
5466 0 \
5467 -S "skip write certificate request" \
5468 -C "skip parse certificate request" \
5469 -c "got a certificate request" \
5470 -C "skip write certificate" \
5471 -C "skip write certificate verify" \
5472 -S "skip parse certificate verify" \
5473 -S "x509_verify_cert() returned" \
5474 -S "! The certificate is not correctly signed by the trusted CA" \
5475 -S "The certificate has been revoked (is on a CRL)"
5476
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]5477run_test "SNI: DTLS, CA override with CRL" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]5478 "$P_SRV debug_level=3 auth_mode=optional \
5479 crt_file=data_files/server5.crt key_file=data_files/server5.key dtls=1 \
5480 ca_file=data_files/test-ca.crt \
5481 sni=localhost,data_files/server2.crt,data_files/server2.key,data_files/test-ca2.crt,data_files/crl-ec-sha256.pem,required" \
5482 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
5483 crt_file=data_files/server6.crt key_file=data_files/server6.key" \
5484 1 \
5485 -S "skip write certificate request" \
5486 -C "skip parse certificate request" \
5487 -c "got a certificate request" \
5488 -C "skip write certificate" \
5489 -C "skip write certificate verify" \
5490 -S "skip parse certificate verify" \
5491 -s "x509_verify_cert() returned" \
5492 -S "! The certificate is not correctly signed by the trusted CA" \
5493 -s "The certificate has been revoked (is on a CRL)"
5494
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5495# Tests for non-blocking I/O: exercise a variety of handshake flows
5496
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5497run_test "Non-blocking I/O: basic handshake" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5498 "$P_SRV nbio=2 tickets=0 auth_mode=none" \
5499 "$P_CLI nbio=2 tickets=0" \
5500 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5501 -S "mbedtls_ssl_handshake returned" \
5502 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5503 -c "Read from server: .* bytes read"
5504
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5505run_test "Non-blocking I/O: client auth" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5506 "$P_SRV nbio=2 tickets=0 auth_mode=required" \
5507 "$P_CLI nbio=2 tickets=0" \
5508 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5509 -S "mbedtls_ssl_handshake returned" \
5510 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5511 -c "Read from server: .* bytes read"
5512
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5513run_test "Non-blocking I/O: ticket" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5514 "$P_SRV nbio=2 tickets=1 auth_mode=none" \
5515 "$P_CLI nbio=2 tickets=1" \
5516 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5517 -S "mbedtls_ssl_handshake returned" \
5518 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5519 -c "Read from server: .* bytes read"
5520
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5521run_test "Non-blocking I/O: ticket + client auth" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5522 "$P_SRV nbio=2 tickets=1 auth_mode=required" \
5523 "$P_CLI nbio=2 tickets=1" \
5524 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5525 -S "mbedtls_ssl_handshake returned" \
5526 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5527 -c "Read from server: .* bytes read"
5528
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5529run_test "Non-blocking I/O: ticket + client auth + resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5530 "$P_SRV nbio=2 tickets=1 auth_mode=required" \
5531 "$P_CLI nbio=2 tickets=1 reconnect=1" \
5532 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5533 -S "mbedtls_ssl_handshake returned" \
5534 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5535 -c "Read from server: .* bytes read"
5536
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5537run_test "Non-blocking I/O: ticket + resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5538 "$P_SRV nbio=2 tickets=1 auth_mode=none" \
5539 "$P_CLI nbio=2 tickets=1 reconnect=1" \
5540 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5541 -S "mbedtls_ssl_handshake returned" \
5542 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5543 -c "Read from server: .* bytes read"
5544
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5545run_test "Non-blocking I/O: session-id resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5546 "$P_SRV nbio=2 tickets=0 auth_mode=none" \
5547 "$P_CLI nbio=2 tickets=0 reconnect=1" \
5548 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5549 -S "mbedtls_ssl_handshake returned" \
5550 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]5551 -c "Read from server: .* bytes read"
5552
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]5553# Tests for event-driven I/O: exercise a variety of handshake flows
5554
5555run_test "Event-driven I/O: basic handshake" \
5556 "$P_SRV event=1 tickets=0 auth_mode=none" \
5557 "$P_CLI event=1 tickets=0" \
5558 0 \
5559 -S "mbedtls_ssl_handshake returned" \
5560 -C "mbedtls_ssl_handshake returned" \
5561 -c "Read from server: .* bytes read"
5562
5563run_test "Event-driven I/O: client auth" \
5564 "$P_SRV event=1 tickets=0 auth_mode=required" \
5565 "$P_CLI event=1 tickets=0" \
5566 0 \
5567 -S "mbedtls_ssl_handshake returned" \
5568 -C "mbedtls_ssl_handshake returned" \
5569 -c "Read from server: .* bytes read"
5570
5571run_test "Event-driven I/O: ticket" \
5572 "$P_SRV event=1 tickets=1 auth_mode=none" \
5573 "$P_CLI event=1 tickets=1" \
5574 0 \
5575 -S "mbedtls_ssl_handshake returned" \
5576 -C "mbedtls_ssl_handshake returned" \
5577 -c "Read from server: .* bytes read"
5578
5579run_test "Event-driven I/O: ticket + client auth" \
5580 "$P_SRV event=1 tickets=1 auth_mode=required" \
5581 "$P_CLI event=1 tickets=1" \
5582 0 \
5583 -S "mbedtls_ssl_handshake returned" \
5584 -C "mbedtls_ssl_handshake returned" \
5585 -c "Read from server: .* bytes read"
5586
5587run_test "Event-driven I/O: ticket + client auth + resume" \
5588 "$P_SRV event=1 tickets=1 auth_mode=required" \
5589 "$P_CLI event=1 tickets=1 reconnect=1" \
5590 0 \
5591 -S "mbedtls_ssl_handshake returned" \
5592 -C "mbedtls_ssl_handshake returned" \
5593 -c "Read from server: .* bytes read"
5594
5595run_test "Event-driven I/O: ticket + resume" \
5596 "$P_SRV event=1 tickets=1 auth_mode=none" \
5597 "$P_CLI event=1 tickets=1 reconnect=1" \
5598 0 \
5599 -S "mbedtls_ssl_handshake returned" \
5600 -C "mbedtls_ssl_handshake returned" \
5601 -c "Read from server: .* bytes read"
5602
5603run_test "Event-driven I/O: session-id resume" \
5604 "$P_SRV event=1 tickets=0 auth_mode=none" \
5605 "$P_CLI event=1 tickets=0 reconnect=1" \
5606 0 \
5607 -S "mbedtls_ssl_handshake returned" \
5608 -C "mbedtls_ssl_handshake returned" \
5609 -c "Read from server: .* bytes read"
5610
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]5611run_test "Event-driven I/O, DTLS: basic handshake" \
5612 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=none" \
5613 "$P_CLI dtls=1 event=1 tickets=0" \
5614 0 \
5615 -c "Read from server: .* bytes read"
5616
5617run_test "Event-driven I/O, DTLS: client auth" \
5618 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=required" \
5619 "$P_CLI dtls=1 event=1 tickets=0" \
5620 0 \
5621 -c "Read from server: .* bytes read"
5622
5623run_test "Event-driven I/O, DTLS: ticket" \
5624 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=none" \
5625 "$P_CLI dtls=1 event=1 tickets=1" \
5626 0 \
5627 -c "Read from server: .* bytes read"
5628
5629run_test "Event-driven I/O, DTLS: ticket + client auth" \
5630 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=required" \
5631 "$P_CLI dtls=1 event=1 tickets=1" \
5632 0 \
5633 -c "Read from server: .* bytes read"
5634
5635run_test "Event-driven I/O, DTLS: ticket + client auth + resume" \
5636 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]5637 "$P_CLI dtls=1 event=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]5638 0 \
5639 -c "Read from server: .* bytes read"
5640
5641run_test "Event-driven I/O, DTLS: ticket + resume" \
5642 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]5643 "$P_CLI dtls=1 event=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]5644 0 \
5645 -c "Read from server: .* bytes read"
5646
5647run_test "Event-driven I/O, DTLS: session-id resume" \
5648 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=none" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]5649 "$P_CLI dtls=1 event=1 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]5650 0 \
5651 -c "Read from server: .* bytes read"
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]5652
5653# This test demonstrates the need for the mbedtls_ssl_check_pending function.
5654# During session resumption, the client will send its ApplicationData record
5655# within the same datagram as the Finished messages. In this situation, the
5656# server MUST NOT idle on the underlying transport after handshake completion,
5657# because the ApplicationData request has already been queued internally.
5658run_test "Event-driven I/O, DTLS: session-id resume, UDP packing" \
Hanno Becker8d832182018-03-15 10:14:19 +0000[diff] [blame]5659 -p "$P_PXY pack=50" \
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]5660 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=required" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]5661 "$P_CLI dtls=1 event=1 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]5662 0 \
5663 -c "Read from server: .* bytes read"
5664
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]5665# Tests for version negotiation
5666
Gilles Peskinedf4ad902022-04-08 15:14:38 +0200[diff] [blame]5667requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5668run_test "Version check: all -> 1.2" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5669 "$P_SRV" \
5670 "$P_CLI" \
5671 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5672 -S "mbedtls_ssl_handshake returned" \
5673 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5674 -s "Protocol is TLSv1.2" \
5675 -c "Protocol is TLSv1.2"
5676
Gilles Peskinedf4ad902022-04-08 15:14:38 +0200[diff] [blame]5677requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5678run_test "Version check: cli max 1.1 -> 1.1" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5679 "$P_SRV" \
5680 "$P_CLI max_version=tls1_1" \
5681 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5682 -S "mbedtls_ssl_handshake returned" \
5683 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5684 -s "Protocol is TLSv1.1" \
5685 -c "Protocol is TLSv1.1"
5686
Gilles Peskinedf4ad902022-04-08 15:14:38 +0200[diff] [blame]5687requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5688run_test "Version check: srv max 1.1 -> 1.1" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5689 "$P_SRV max_version=tls1_1" \
5690 "$P_CLI" \
5691 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5692 -S "mbedtls_ssl_handshake returned" \
5693 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5694 -s "Protocol is TLSv1.1" \
5695 -c "Protocol is TLSv1.1"
5696
Gilles Peskinedf4ad902022-04-08 15:14:38 +0200[diff] [blame]5697requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5698run_test "Version check: cli+srv max 1.1 -> 1.1" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5699 "$P_SRV max_version=tls1_1" \
5700 "$P_CLI max_version=tls1_1" \
5701 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5702 -S "mbedtls_ssl_handshake returned" \
5703 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5704 -s "Protocol is TLSv1.1" \
5705 -c "Protocol is TLSv1.1"
5706
Gilles Peskinedf4ad902022-04-08 15:14:38 +0200[diff] [blame]5707requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5708run_test "Version check: cli max 1.1, srv min 1.1 -> 1.1" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5709 "$P_SRV min_version=tls1_1" \
5710 "$P_CLI max_version=tls1_1" \
5711 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5712 -S "mbedtls_ssl_handshake returned" \
5713 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5714 -s "Protocol is TLSv1.1" \
5715 -c "Protocol is TLSv1.1"
5716
Gilles Peskinedf4ad902022-04-08 15:14:38 +0200[diff] [blame]5717requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5718run_test "Version check: cli min 1.1, srv max 1.1 -> 1.1" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5719 "$P_SRV max_version=tls1_1" \
5720 "$P_CLI min_version=tls1_1" \
5721 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5722 -S "mbedtls_ssl_handshake returned" \
5723 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5724 -s "Protocol is TLSv1.1" \
5725 -c "Protocol is TLSv1.1"
5726
Gilles Peskinebcb2ab02022-04-09 00:11:16 +0200[diff] [blame]5727requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
5728requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5729run_test "Version check: cli min 1.2, srv max 1.1 -> fail" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5730 "$P_SRV max_version=tls1_1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]5731 "$P_CLI min_version=tls12" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5732 1 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5733 -s "mbedtls_ssl_handshake returned" \
5734 -c "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5735 -c "SSL - Handshake protocol not within min/max boundaries"
5736
Gilles Peskinebcb2ab02022-04-09 00:11:16 +0200[diff] [blame]5737requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_1
5738requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5739run_test "Version check: srv min 1.2, cli max 1.1 -> fail" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]5740 "$P_SRV min_version=tls12" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5741 "$P_CLI max_version=tls1_1" \
5742 1 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5743 -s "mbedtls_ssl_handshake returned" \
5744 -c "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]5745 -s "SSL - Handshake protocol not within min/max boundaries"
5746
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]5747# Tests for ALPN extension
5748
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5749run_test "ALPN: none" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5750 "$P_SRV debug_level=3" \
5751 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]5752 0 \
5753 -C "client hello, adding alpn extension" \
5754 -S "found alpn extension" \
5755 -C "got an alert message, type: \\[2:120]" \
5756 -S "server hello, adding alpn extension" \
5757 -C "found alpn extension " \
5758 -C "Application Layer Protocol is" \
5759 -S "Application Layer Protocol is"
5760
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5761run_test "ALPN: client only" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5762 "$P_SRV debug_level=3" \
5763 "$P_CLI debug_level=3 alpn=abc,1234" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]5764 0 \
5765 -c "client hello, adding alpn extension" \
5766 -s "found alpn extension" \
5767 -C "got an alert message, type: \\[2:120]" \
5768 -S "server hello, adding alpn extension" \
5769 -C "found alpn extension " \
5770 -c "Application Layer Protocol is (none)" \
5771 -S "Application Layer Protocol is"
5772
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5773run_test "ALPN: server only" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5774 "$P_SRV debug_level=3 alpn=abc,1234" \
5775 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]5776 0 \
5777 -C "client hello, adding alpn extension" \
5778 -S "found alpn extension" \
5779 -C "got an alert message, type: \\[2:120]" \
5780 -S "server hello, adding alpn extension" \
5781 -C "found alpn extension " \
5782 -C "Application Layer Protocol is" \
5783 -s "Application Layer Protocol is (none)"
5784
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5785run_test "ALPN: both, common cli1-srv1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5786 "$P_SRV debug_level=3 alpn=abc,1234" \
5787 "$P_CLI debug_level=3 alpn=abc,1234" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]5788 0 \
5789 -c "client hello, adding alpn extension" \
5790 -s "found alpn extension" \
5791 -C "got an alert message, type: \\[2:120]" \
5792 -s "server hello, adding alpn extension" \
5793 -c "found alpn extension" \
5794 -c "Application Layer Protocol is abc" \
5795 -s "Application Layer Protocol is abc"
5796
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5797run_test "ALPN: both, common cli2-srv1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5798 "$P_SRV debug_level=3 alpn=abc,1234" \
5799 "$P_CLI debug_level=3 alpn=1234,abc" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]5800 0 \
5801 -c "client hello, adding alpn extension" \
5802 -s "found alpn extension" \
5803 -C "got an alert message, type: \\[2:120]" \
5804 -s "server hello, adding alpn extension" \
5805 -c "found alpn extension" \
5806 -c "Application Layer Protocol is abc" \
5807 -s "Application Layer Protocol is abc"
5808
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5809run_test "ALPN: both, common cli1-srv2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5810 "$P_SRV debug_level=3 alpn=abc,1234" \
5811 "$P_CLI debug_level=3 alpn=1234,abcde" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]5812 0 \
5813 -c "client hello, adding alpn extension" \
5814 -s "found alpn extension" \
5815 -C "got an alert message, type: \\[2:120]" \
5816 -s "server hello, adding alpn extension" \
5817 -c "found alpn extension" \
5818 -c "Application Layer Protocol is 1234" \
5819 -s "Application Layer Protocol is 1234"
5820
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5821run_test "ALPN: both, no common" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5822 "$P_SRV debug_level=3 alpn=abc,123" \
5823 "$P_CLI debug_level=3 alpn=1234,abcde" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]5824 1 \
5825 -c "client hello, adding alpn extension" \
5826 -s "found alpn extension" \
5827 -c "got an alert message, type: \\[2:120]" \
5828 -S "server hello, adding alpn extension" \
5829 -C "found alpn extension" \
5830 -C "Application Layer Protocol is 1234" \
5831 -S "Application Layer Protocol is 1234"
5832
Manuel Pégourié-Gonnard83d8c732014-04-07 13:24:21 +0200[diff] [blame]5833
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5834# Tests for keyUsage in leaf certificates, part 1:
5835# server-side certificate/suite selection
5836
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5837run_test "keyUsage srv: RSA, digitalSignature -> (EC)DHE-RSA" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5838 "$P_SRV key_file=data_files/server2.key \
5839 crt_file=data_files/server2.ku-ds.crt" \
5840 "$P_CLI" \
5841 0 \
Manuel Pégourié-Gonnard17cde5f2014-05-22 14:42:39 +0200[diff] [blame]5842 -c "Ciphersuite is TLS-[EC]*DHE-RSA-WITH-"
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5843
5844
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5845run_test "keyUsage srv: RSA, keyEncipherment -> RSA" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5846 "$P_SRV key_file=data_files/server2.key \
5847 crt_file=data_files/server2.ku-ke.crt" \
5848 "$P_CLI" \
5849 0 \
5850 -c "Ciphersuite is TLS-RSA-WITH-"
5851
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5852run_test "keyUsage srv: RSA, keyAgreement -> fail" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]5853 "$P_SRV key_file=data_files/server2.key \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5854 crt_file=data_files/server2.ku-ka.crt" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]5855 "$P_CLI" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5856 1 \
5857 -C "Ciphersuite is "
5858
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5859run_test "keyUsage srv: ECDSA, digitalSignature -> ECDHE-ECDSA" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5860 "$P_SRV key_file=data_files/server5.key \
5861 crt_file=data_files/server5.ku-ds.crt" \
5862 "$P_CLI" \
5863 0 \
5864 -c "Ciphersuite is TLS-ECDHE-ECDSA-WITH-"
5865
5866
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5867run_test "keyUsage srv: ECDSA, keyAgreement -> ECDH-" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5868 "$P_SRV key_file=data_files/server5.key \
5869 crt_file=data_files/server5.ku-ka.crt" \
5870 "$P_CLI" \
5871 0 \
5872 -c "Ciphersuite is TLS-ECDH-"
5873
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5874run_test "keyUsage srv: ECDSA, keyEncipherment -> fail" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]5875 "$P_SRV key_file=data_files/server5.key \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5876 crt_file=data_files/server5.ku-ke.crt" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]5877 "$P_CLI" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5878 1 \
5879 -C "Ciphersuite is "
5880
5881# Tests for keyUsage in leaf certificates, part 2:
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5882# client-side checking of server cert
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5883
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5884run_test "keyUsage cli: DigitalSignature+KeyEncipherment, RSA: OK" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5885 "$O_SRV -key data_files/server2.key \
5886 -cert data_files/server2.ku-ds_ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5887 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5888 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5889 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5890 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5891 -C "Processing of the Certificate handshake message failed" \
5892 -c "Ciphersuite is TLS-"
5893
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5894run_test "keyUsage cli: DigitalSignature+KeyEncipherment, DHE-RSA: OK" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5895 "$O_SRV -key data_files/server2.key \
5896 -cert data_files/server2.ku-ds_ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5897 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5898 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
5899 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5900 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5901 -C "Processing of the Certificate handshake message failed" \
5902 -c "Ciphersuite is TLS-"
5903
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5904run_test "keyUsage cli: KeyEncipherment, RSA: OK" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5905 "$O_SRV -key data_files/server2.key \
5906 -cert data_files/server2.ku-ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5907 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5908 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5909 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5910 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5911 -C "Processing of the Certificate handshake message failed" \
5912 -c "Ciphersuite is TLS-"
5913
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5914run_test "keyUsage cli: KeyEncipherment, DHE-RSA: fail" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5915 "$O_SRV -key data_files/server2.key \
5916 -cert data_files/server2.ku-ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5917 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5918 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
5919 1 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5920 -c "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5921 -c "Processing of the Certificate handshake message failed" \
5922 -C "Ciphersuite is TLS-"
5923
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]5924run_test "keyUsage cli: KeyEncipherment, DHE-RSA: fail, soft" \
5925 "$O_SRV -key data_files/server2.key \
5926 -cert data_files/server2.ku-ke.crt" \
5927 "$P_CLI debug_level=1 auth_mode=optional \
5928 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
5929 0 \
5930 -c "bad certificate (usage extensions)" \
5931 -C "Processing of the Certificate handshake message failed" \
5932 -c "Ciphersuite is TLS-" \
5933 -c "! Usage does not match the keyUsage extension"
5934
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5935run_test "keyUsage cli: DigitalSignature, DHE-RSA: OK" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5936 "$O_SRV -key data_files/server2.key \
5937 -cert data_files/server2.ku-ds.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5938 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5939 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
5940 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5941 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5942 -C "Processing of the Certificate handshake message failed" \
5943 -c "Ciphersuite is TLS-"
5944
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5945run_test "keyUsage cli: DigitalSignature, RSA: fail" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5946 "$O_SRV -key data_files/server2.key \
5947 -cert data_files/server2.ku-ds.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5948 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5949 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5950 1 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5951 -c "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]5952 -c "Processing of the Certificate handshake message failed" \
5953 -C "Ciphersuite is TLS-"
5954
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]5955run_test "keyUsage cli: DigitalSignature, RSA: fail, soft" \
5956 "$O_SRV -key data_files/server2.key \
5957 -cert data_files/server2.ku-ds.crt" \
5958 "$P_CLI debug_level=1 auth_mode=optional \
5959 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
5960 0 \
5961 -c "bad certificate (usage extensions)" \
5962 -C "Processing of the Certificate handshake message failed" \
5963 -c "Ciphersuite is TLS-" \
5964 -c "! Usage does not match the keyUsage extension"
5965
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5966# Tests for keyUsage in leaf certificates, part 3:
5967# server-side checking of client cert
5968
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5969run_test "keyUsage cli-auth: RSA, DigitalSignature: OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5970 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5971 "$O_CLI -key data_files/server2.key \
5972 -cert data_files/server2.ku-ds.crt" \
5973 0 \
5974 -S "bad certificate (usage extensions)" \
5975 -S "Processing of the Certificate handshake message failed"
5976
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5977run_test "keyUsage cli-auth: RSA, KeyEncipherment: fail (soft)" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5978 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5979 "$O_CLI -key data_files/server2.key \
5980 -cert data_files/server2.ku-ke.crt" \
5981 0 \
5982 -s "bad certificate (usage extensions)" \
5983 -S "Processing of the Certificate handshake message failed"
5984
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5985run_test "keyUsage cli-auth: RSA, KeyEncipherment: fail (hard)" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5986 "$P_SRV debug_level=1 auth_mode=required" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5987 "$O_CLI -key data_files/server2.key \
5988 -cert data_files/server2.ku-ke.crt" \
5989 1 \
5990 -s "bad certificate (usage extensions)" \
5991 -s "Processing of the Certificate handshake message failed"
5992
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5993run_test "keyUsage cli-auth: ECDSA, DigitalSignature: OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5994 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]5995 "$O_CLI -key data_files/server5.key \
5996 -cert data_files/server5.ku-ds.crt" \
5997 0 \
5998 -S "bad certificate (usage extensions)" \
5999 -S "Processing of the Certificate handshake message failed"
6000
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6001run_test "keyUsage cli-auth: ECDSA, KeyAgreement: fail (soft)" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6002 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]6003 "$O_CLI -key data_files/server5.key \
6004 -cert data_files/server5.ku-ka.crt" \
6005 0 \
6006 -s "bad certificate (usage extensions)" \
6007 -S "Processing of the Certificate handshake message failed"
6008
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6009# Tests for extendedKeyUsage, part 1: server-side certificate/suite selection
6010
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6011run_test "extKeyUsage srv: serverAuth -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6012 "$P_SRV key_file=data_files/server5.key \
6013 crt_file=data_files/server5.eku-srv.crt" \
6014 "$P_CLI" \
6015 0
6016
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6017run_test "extKeyUsage srv: serverAuth,clientAuth -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6018 "$P_SRV key_file=data_files/server5.key \
6019 crt_file=data_files/server5.eku-srv.crt" \
6020 "$P_CLI" \
6021 0
6022
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6023run_test "extKeyUsage srv: codeSign,anyEKU -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6024 "$P_SRV key_file=data_files/server5.key \
6025 crt_file=data_files/server5.eku-cs_any.crt" \
6026 "$P_CLI" \
6027 0
6028
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6029run_test "extKeyUsage srv: codeSign -> fail" \
Manuel Pégourié-Gonnard7eb58cb2015-07-07 11:54:14 +0200[diff] [blame]6030 "$P_SRV key_file=data_files/server5.key \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6031 crt_file=data_files/server5.eku-cli.crt" \
Manuel Pégourié-Gonnard7eb58cb2015-07-07 11:54:14 +0200[diff] [blame]6032 "$P_CLI" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6033 1
6034
6035# Tests for extendedKeyUsage, part 2: client-side checking of server cert
6036
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6037run_test "extKeyUsage cli: serverAuth -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6038 "$O_SRV -key data_files/server5.key \
6039 -cert data_files/server5.eku-srv.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6040 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6041 0 \
6042 -C "bad certificate (usage extensions)" \
6043 -C "Processing of the Certificate handshake message failed" \
6044 -c "Ciphersuite is TLS-"
6045
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6046run_test "extKeyUsage cli: serverAuth,clientAuth -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6047 "$O_SRV -key data_files/server5.key \
6048 -cert data_files/server5.eku-srv_cli.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6049 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6050 0 \
6051 -C "bad certificate (usage extensions)" \
6052 -C "Processing of the Certificate handshake message failed" \
6053 -c "Ciphersuite is TLS-"
6054
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6055run_test "extKeyUsage cli: codeSign,anyEKU -> OK" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6056 "$O_SRV -key data_files/server5.key \
6057 -cert data_files/server5.eku-cs_any.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6058 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6059 0 \
6060 -C "bad certificate (usage extensions)" \
6061 -C "Processing of the Certificate handshake message failed" \
6062 -c "Ciphersuite is TLS-"
6063
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6064run_test "extKeyUsage cli: codeSign -> fail" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6065 "$O_SRV -key data_files/server5.key \
6066 -cert data_files/server5.eku-cs.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6067 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6068 1 \
6069 -c "bad certificate (usage extensions)" \
6070 -c "Processing of the Certificate handshake message failed" \
6071 -C "Ciphersuite is TLS-"
6072
6073# Tests for extendedKeyUsage, part 3: server-side checking of client cert
6074
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6075run_test "extKeyUsage cli-auth: clientAuth -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6076 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6077 "$O_CLI -key data_files/server5.key \
6078 -cert data_files/server5.eku-cli.crt" \
6079 0 \
6080 -S "bad certificate (usage extensions)" \
6081 -S "Processing of the Certificate handshake message failed"
6082
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6083run_test "extKeyUsage cli-auth: serverAuth,clientAuth -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6084 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6085 "$O_CLI -key data_files/server5.key \
6086 -cert data_files/server5.eku-srv_cli.crt" \
6087 0 \
6088 -S "bad certificate (usage extensions)" \
6089 -S "Processing of the Certificate handshake message failed"
6090
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6091run_test "extKeyUsage cli-auth: codeSign,anyEKU -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6092 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6093 "$O_CLI -key data_files/server5.key \
6094 -cert data_files/server5.eku-cs_any.crt" \
6095 0 \
6096 -S "bad certificate (usage extensions)" \
6097 -S "Processing of the Certificate handshake message failed"
6098
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6099run_test "extKeyUsage cli-auth: codeSign -> fail (soft)" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6100 "$P_SRV debug_level=1 auth_mode=optional" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6101 "$O_CLI -key data_files/server5.key \
6102 -cert data_files/server5.eku-cs.crt" \
6103 0 \
6104 -s "bad certificate (usage extensions)" \
6105 -S "Processing of the Certificate handshake message failed"
6106
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6107run_test "extKeyUsage cli-auth: codeSign -> fail (hard)" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6108 "$P_SRV debug_level=1 auth_mode=required" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]6109 "$O_CLI -key data_files/server5.key \
6110 -cert data_files/server5.eku-cs.crt" \
6111 1 \
6112 -s "bad certificate (usage extensions)" \
6113 -s "Processing of the Certificate handshake message failed"
6114
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]6115# Tests for DHM parameters loading
6116
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6117run_test "DHM parameters: reference" \
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]6118 "$P_SRV" \
6119 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6120 debug_level=3" \
6121 0 \
6122 -c "value of 'DHM: P ' (2048 bits)" \
Hanno Becker13be9902017-09-27 17:17:30 +0100[diff] [blame]6123 -c "value of 'DHM: G ' (2 bits)"
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]6124
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6125run_test "DHM parameters: other parameters" \
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]6126 "$P_SRV dhm_file=data_files/dhparams.pem" \
6127 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6128 debug_level=3" \
6129 0 \
6130 -c "value of 'DHM: P ' (1024 bits)" \
6131 -c "value of 'DHM: G ' (2 bits)"
6132
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]6133# Tests for DHM client-side size checking
6134
6135run_test "DHM size: server default, client default, OK" \
6136 "$P_SRV" \
6137 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6138 debug_level=1" \
6139 0 \
6140 -C "DHM prime too short:"
6141
6142run_test "DHM size: server default, client 2048, OK" \
6143 "$P_SRV" \
6144 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6145 debug_level=1 dhmlen=2048" \
6146 0 \
6147 -C "DHM prime too short:"
6148
6149run_test "DHM size: server 1024, client default, OK" \
6150 "$P_SRV dhm_file=data_files/dhparams.pem" \
6151 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6152 debug_level=1" \
6153 0 \
6154 -C "DHM prime too short:"
6155
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]6156run_test "DHM size: server 999, client 999, OK" \
6157 "$P_SRV dhm_file=data_files/dh.999.pem" \
6158 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6159 debug_level=1 dhmlen=999" \
6160 0 \
6161 -C "DHM prime too short:"
6162
6163run_test "DHM size: server 1000, client 1000, OK" \
6164 "$P_SRV dhm_file=data_files/dh.1000.pem" \
6165 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6166 debug_level=1 dhmlen=1000" \
6167 0 \
6168 -C "DHM prime too short:"
6169
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]6170run_test "DHM size: server 1000, client default, rejected" \
6171 "$P_SRV dhm_file=data_files/dh.1000.pem" \
6172 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6173 debug_level=1" \
6174 1 \
6175 -c "DHM prime too short:"
6176
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]6177run_test "DHM size: server 1000, client 1001, rejected" \
6178 "$P_SRV dhm_file=data_files/dh.1000.pem" \
6179 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6180 debug_level=1 dhmlen=1001" \
6181 1 \
6182 -c "DHM prime too short:"
6183
6184run_test "DHM size: server 999, client 1000, rejected" \
6185 "$P_SRV dhm_file=data_files/dh.999.pem" \
6186 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6187 debug_level=1 dhmlen=1000" \
6188 1 \
6189 -c "DHM prime too short:"
6190
6191run_test "DHM size: server 998, client 999, rejected" \
6192 "$P_SRV dhm_file=data_files/dh.998.pem" \
6193 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6194 debug_level=1 dhmlen=999" \
6195 1 \
6196 -c "DHM prime too short:"
6197
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]6198run_test "DHM size: server default, client 2049, rejected" \
6199 "$P_SRV" \
6200 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
6201 debug_level=1 dhmlen=2049" \
6202 1 \
6203 -c "DHM prime too short:"
6204
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6205# Tests for PSK callback
6206
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6207run_test "PSK callback: psk, no callback" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6208 "$P_SRV psk=abc123 psk_identity=foo" \
6209 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
6210 psk_identity=foo psk=abc123" \
6211 0 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]6212 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnard10c3c9f2014-06-10 15:28:52 +0200[diff] [blame]6213 -S "SSL - Unknown identity received" \
6214 -S "SSL - Verification of the message MAC failed"
6215
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]6216requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6217run_test "PSK callback: opaque psk on client, no callback" \
6218 "$P_SRV extended_ms=0 debug_level=1 psk=abc123 psk_identity=foo" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6219 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker1d911cd2018-11-15 13:06:09 +0000[diff] [blame]6220 psk_identity=foo psk=abc123 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]6221 0 \
6222 -c "skip PMS generation for opaque PSK"\
6223 -S "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6224 -C "session hash for extended master secret"\
6225 -S "session hash for extended master secret"\
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]6226 -S "SSL - None of the common ciphersuites is usable" \
6227 -S "SSL - Unknown identity received" \
6228 -S "SSL - Verification of the message MAC failed"
6229
6230requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6231run_test "PSK callback: opaque psk on client, no callback, SHA-384" \
6232 "$P_SRV extended_ms=0 debug_level=1 psk=abc123 psk_identity=foo" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6233 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Hanno Becker1d911cd2018-11-15 13:06:09 +0000[diff] [blame]6234 psk_identity=foo psk=abc123 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]6235 0 \
6236 -c "skip PMS generation for opaque PSK"\
6237 -S "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6238 -C "session hash for extended master secret"\
6239 -S "session hash for extended master secret"\
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]6240 -S "SSL - None of the common ciphersuites is usable" \
6241 -S "SSL - Unknown identity received" \
6242 -S "SSL - Verification of the message MAC failed"
6243
6244requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6245run_test "PSK callback: opaque psk on client, no callback, EMS" \
6246 "$P_SRV extended_ms=1 debug_level=3 psk=abc123 psk_identity=foo" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6247 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker1d911cd2018-11-15 13:06:09 +0000[diff] [blame]6248 psk_identity=foo psk=abc123 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]6249 0 \
6250 -c "skip PMS generation for opaque PSK"\
6251 -S "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6252 -c "session hash for extended master secret"\
6253 -s "session hash for extended master secret"\
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]6254 -S "SSL - None of the common ciphersuites is usable" \
6255 -S "SSL - Unknown identity received" \
6256 -S "SSL - Verification of the message MAC failed"
6257
6258requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6259run_test "PSK callback: opaque psk on client, no callback, SHA-384, EMS" \
6260 "$P_SRV extended_ms=1 debug_level=3 psk=abc123 psk_identity=foo" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6261 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Hanno Becker1d911cd2018-11-15 13:06:09 +0000[diff] [blame]6262 psk_identity=foo psk=abc123 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]6263 0 \
6264 -c "skip PMS generation for opaque PSK"\
6265 -S "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6266 -c "session hash for extended master secret"\
6267 -s "session hash for extended master secret"\
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]6268 -S "SSL - None of the common ciphersuites is usable" \
6269 -S "SSL - Unknown identity received" \
6270 -S "SSL - Verification of the message MAC failed"
6271
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6272requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6273run_test "PSK callback: raw psk on client, static opaque on server, no callback" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6274 "$P_SRV extended_ms=0 debug_level=1 psk=abc123 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
6275 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6276 psk_identity=foo psk=abc123" \
6277 0 \
6278 -C "skip PMS generation for opaque PSK"\
6279 -s "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6280 -C "session hash for extended master secret"\
6281 -S "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6282 -S "SSL - None of the common ciphersuites is usable" \
6283 -S "SSL - Unknown identity received" \
6284 -S "SSL - Verification of the message MAC failed"
6285
6286requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6287run_test "PSK callback: raw psk on client, static opaque on server, no callback, SHA-384" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6288 "$P_SRV extended_ms=0 debug_level=1 psk=abc123 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384" \
6289 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6290 psk_identity=foo psk=abc123" \
6291 0 \
6292 -C "skip PMS generation for opaque PSK"\
6293 -s "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6294 -C "session hash for extended master secret"\
6295 -S "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6296 -S "SSL - None of the common ciphersuites is usable" \
6297 -S "SSL - Unknown identity received" \
6298 -S "SSL - Verification of the message MAC failed"
6299
6300requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6301run_test "PSK callback: raw psk on client, static opaque on server, no callback, EMS" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6302 "$P_SRV debug_level=3 psk=abc123 psk_identity=foo psk_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6303 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6304 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6305 psk_identity=foo psk=abc123 extended_ms=1" \
6306 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6307 -c "session hash for extended master secret"\
6308 -s "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6309 -C "skip PMS generation for opaque PSK"\
6310 -s "skip PMS generation for opaque PSK"\
6311 -S "SSL - None of the common ciphersuites is usable" \
6312 -S "SSL - Unknown identity received" \
6313 -S "SSL - Verification of the message MAC failed"
6314
6315requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6316run_test "PSK callback: raw psk on client, static opaque on server, no callback, EMS, SHA384" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6317 "$P_SRV debug_level=3 psk=abc123 psk_identity=foo psk_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6318 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6319 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6320 psk_identity=foo psk=abc123 extended_ms=1" \
6321 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6322 -c "session hash for extended master secret"\
6323 -s "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6324 -C "skip PMS generation for opaque PSK"\
6325 -s "skip PMS generation for opaque PSK"\
6326 -S "SSL - None of the common ciphersuites is usable" \
6327 -S "SSL - Unknown identity received" \
6328 -S "SSL - Verification of the message MAC failed"
6329
6330requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6331run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6332 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
6333 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6334 psk_identity=def psk=beef" \
6335 0 \
6336 -C "skip PMS generation for opaque PSK"\
6337 -s "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6338 -C "session hash for extended master secret"\
6339 -S "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6340 -S "SSL - None of the common ciphersuites is usable" \
6341 -S "SSL - Unknown identity received" \
6342 -S "SSL - Verification of the message MAC failed"
6343
6344requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6345run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback, SHA-384" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6346 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384" \
6347 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6348 psk_identity=def psk=beef" \
6349 0 \
6350 -C "skip PMS generation for opaque PSK"\
6351 -s "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6352 -C "session hash for extended master secret"\
6353 -S "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6354 -S "SSL - None of the common ciphersuites is usable" \
6355 -S "SSL - Unknown identity received" \
6356 -S "SSL - Verification of the message MAC failed"
6357
6358requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6359run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback, EMS" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6360 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6361 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6362 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6363 psk_identity=abc psk=dead extended_ms=1" \
6364 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6365 -c "session hash for extended master secret"\
6366 -s "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6367 -C "skip PMS generation for opaque PSK"\
6368 -s "skip PMS generation for opaque PSK"\
6369 -S "SSL - None of the common ciphersuites is usable" \
6370 -S "SSL - Unknown identity received" \
6371 -S "SSL - Verification of the message MAC failed"
6372
6373requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6374run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback, EMS, SHA384" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6375 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6376 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6377 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6378 psk_identity=abc psk=dead extended_ms=1" \
6379 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6380 -c "session hash for extended master secret"\
6381 -s "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6382 -C "skip PMS generation for opaque PSK"\
6383 -s "skip PMS generation for opaque PSK"\
6384 -S "SSL - None of the common ciphersuites is usable" \
6385 -S "SSL - Unknown identity received" \
6386 -S "SSL - Verification of the message MAC failed"
6387
6388requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6389run_test "PSK callback: raw psk on client, mismatching static raw PSK on server, opaque PSK from callback" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6390 "$P_SRV extended_ms=0 psk_identity=foo psk=abc123 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
6391 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6392 psk_identity=def psk=beef" \
6393 0 \
6394 -C "skip PMS generation for opaque PSK"\
6395 -s "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6396 -C "session hash for extended master secret"\
6397 -S "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6398 -S "SSL - None of the common ciphersuites is usable" \
6399 -S "SSL - Unknown identity received" \
6400 -S "SSL - Verification of the message MAC failed"
6401
6402requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6403run_test "PSK callback: raw psk on client, mismatching static opaque PSK on server, opaque PSK from callback" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6404 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=foo psk=abc123 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
6405 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6406 psk_identity=def psk=beef" \
6407 0 \
6408 -C "skip PMS generation for opaque PSK"\
6409 -s "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6410 -C "session hash for extended master secret"\
6411 -S "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6412 -S "SSL - None of the common ciphersuites is usable" \
6413 -S "SSL - Unknown identity received" \
6414 -S "SSL - Verification of the message MAC failed"
6415
6416requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6417run_test "PSK callback: raw psk on client, mismatching static opaque PSK on server, raw PSK from callback" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6418 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=foo psk=abc123 debug_level=3 psk_list=abc,dead,def,beef min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
6419 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6420 psk_identity=def psk=beef" \
6421 0 \
6422 -C "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6423 -C "session hash for extended master secret"\
6424 -S "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6425 -S "SSL - None of the common ciphersuites is usable" \
6426 -S "SSL - Unknown identity received" \
6427 -S "SSL - Verification of the message MAC failed"
6428
6429requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6430run_test "PSK callback: raw psk on client, id-matching but wrong raw PSK on server, opaque PSK from callback" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6431 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=def psk=abc123 debug_level=3 psk_list=abc,dead,def,beef min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
6432 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6433 psk_identity=def psk=beef" \
6434 0 \
6435 -C "skip PMS generation for opaque PSK"\
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]6436 -C "session hash for extended master secret"\
6437 -S "session hash for extended master secret"\
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6438 -S "SSL - None of the common ciphersuites is usable" \
6439 -S "SSL - Unknown identity received" \
6440 -S "SSL - Verification of the message MAC failed"
6441
6442requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
6443run_test "PSK callback: raw psk on client, matching opaque PSK on server, wrong opaque PSK from callback" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6444 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=def psk=beef debug_level=3 psk_list=abc,dead,def,abc123 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
6445 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]6446 psk_identity=def psk=beef" \
6447 1 \
6448 -s "SSL - Verification of the message MAC failed"
6449
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6450run_test "PSK callback: no psk, no callback" \
Manuel Pégourié-Gonnard10c3c9f2014-06-10 15:28:52 +0200[diff] [blame]6451 "$P_SRV" \
6452 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
6453 psk_identity=foo psk=abc123" \
6454 1 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]6455 -s "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6456 -S "SSL - Unknown identity received" \
6457 -S "SSL - Verification of the message MAC failed"
6458
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6459run_test "PSK callback: callback overrides other settings" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6460 "$P_SRV psk=abc123 psk_identity=foo psk_list=abc,dead,def,beef" \
6461 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
6462 psk_identity=foo psk=abc123" \
6463 1 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]6464 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6465 -s "SSL - Unknown identity received" \
6466 -S "SSL - Verification of the message MAC failed"
6467
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6468run_test "PSK callback: first id matches" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6469 "$P_SRV psk_list=abc,dead,def,beef" \
6470 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
6471 psk_identity=abc psk=dead" \
6472 0 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]6473 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6474 -S "SSL - Unknown identity received" \
6475 -S "SSL - Verification of the message MAC failed"
6476
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6477run_test "PSK callback: second id matches" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6478 "$P_SRV psk_list=abc,dead,def,beef" \
6479 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
6480 psk_identity=def psk=beef" \
6481 0 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]6482 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6483 -S "SSL - Unknown identity received" \
6484 -S "SSL - Verification of the message MAC failed"
6485
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6486run_test "PSK callback: no match" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6487 "$P_SRV psk_list=abc,dead,def,beef" \
6488 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
6489 psk_identity=ghi psk=beef" \
6490 1 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]6491 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6492 -s "SSL - Unknown identity received" \
6493 -S "SSL - Verification of the message MAC failed"
6494
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6495run_test "PSK callback: wrong key" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6496 "$P_SRV psk_list=abc,dead,def,beef" \
6497 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
6498 psk_identity=abc psk=beef" \
6499 1 \
Manuel Pégourié-Gonnardf01768c2015-01-08 17:06:16 +0100[diff] [blame]6500 -S "SSL - None of the common ciphersuites is usable" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]6501 -S "SSL - Unknown identity received" \
6502 -s "SSL - Verification of the message MAC failed"
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]6503
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]6504# Tests for EC J-PAKE
6505
Hanno Beckerfa452c42020-08-14 15:42:49 +0100[diff] [blame]6506requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]6507run_test "ECJPAKE: client not configured" \
6508 "$P_SRV debug_level=3" \
6509 "$P_CLI debug_level=3" \
6510 0 \
Hanno Beckeree63af62020-08-14 15:41:23 +0100[diff] [blame]6511 -C "add ciphersuite: 0xc0ff" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]6512 -C "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]6513 -S "found ecjpake kkpp extension" \
6514 -S "skip ecjpake kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]6515 -S "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]6516 -S "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]6517 -C "found ecjpake_kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]6518 -S "None of the common ciphersuites is usable"
6519
Hanno Beckerfa452c42020-08-14 15:42:49 +0100[diff] [blame]6520requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]6521run_test "ECJPAKE: server not configured" \
6522 "$P_SRV debug_level=3" \
6523 "$P_CLI debug_level=3 ecjpake_pw=bla \
6524 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
6525 1 \
Hanno Beckeree63af62020-08-14 15:41:23 +0100[diff] [blame]6526 -c "add ciphersuite: 0xc0ff" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]6527 -c "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]6528 -s "found ecjpake kkpp extension" \
6529 -s "skip ecjpake kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]6530 -s "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]6531 -S "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]6532 -C "found ecjpake_kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]6533 -s "None of the common ciphersuites is usable"
6534
Hanno Beckerfa452c42020-08-14 15:42:49 +0100[diff] [blame]6535requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]6536run_test "ECJPAKE: working, TLS" \
6537 "$P_SRV debug_level=3 ecjpake_pw=bla" \
6538 "$P_CLI debug_level=3 ecjpake_pw=bla \
6539 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
Manuel Pégourié-Gonnard0f1660a2015-09-16 22:41:06 +0200[diff] [blame]6540 0 \
Hanno Beckeree63af62020-08-14 15:41:23 +0100[diff] [blame]6541 -c "add ciphersuite: 0xc0ff" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]6542 -c "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]6543 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]6544 -s "found ecjpake kkpp extension" \
6545 -S "skip ecjpake kkpp extension" \
6546 -S "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]6547 -s "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]6548 -c "found ecjpake_kkpp extension" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]6549 -S "None of the common ciphersuites is usable" \
6550 -S "SSL - Verification of the message MAC failed"
6551
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]6552server_needs_more_time 1
Dave Rodgman7ed75e22021-06-29 19:05:34 +0100[diff] [blame]6553requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]6554run_test "ECJPAKE: password mismatch, TLS" \
6555 "$P_SRV debug_level=3 ecjpake_pw=bla" \
6556 "$P_CLI debug_level=3 ecjpake_pw=bad \
6557 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
6558 1 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]6559 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]6560 -s "SSL - Verification of the message MAC failed"
6561
Dave Rodgman7ed75e22021-06-29 19:05:34 +0100[diff] [blame]6562requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]6563run_test "ECJPAKE: working, DTLS" \
6564 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla" \
6565 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bla \
6566 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
6567 0 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]6568 -c "re-using cached ecjpake parameters" \
6569 -S "SSL - Verification of the message MAC failed"
6570
Dave Rodgman7ed75e22021-06-29 19:05:34 +0100[diff] [blame]6571requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]6572run_test "ECJPAKE: working, DTLS, no cookie" \
6573 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla cookies=0" \
6574 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bla \
6575 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
6576 0 \
6577 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]6578 -S "SSL - Verification of the message MAC failed"
6579
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]6580server_needs_more_time 1
Dave Rodgman7ed75e22021-06-29 19:05:34 +0100[diff] [blame]6581requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]6582run_test "ECJPAKE: password mismatch, DTLS" \
6583 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla" \
6584 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bad \
6585 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
6586 1 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]6587 -c "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]6588 -s "SSL - Verification of the message MAC failed"
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]6589
Manuel Pégourié-Gonnardca700b22015-10-20 14:47:00 +0200[diff] [blame]6590# for tests with configs/config-thread.h
Dave Rodgman7ed75e22021-06-29 19:05:34 +0100[diff] [blame]6591requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnardca700b22015-10-20 14:47:00 +0200[diff] [blame]6592run_test "ECJPAKE: working, DTLS, nolog" \
6593 "$P_SRV dtls=1 ecjpake_pw=bla" \
6594 "$P_CLI dtls=1 ecjpake_pw=bla \
6595 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
6596 0
6597
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]6598# Tests for ciphersuites per version
6599
Manuel Pégourié-Gonnardaa946b22019-03-01 10:14:58 +0100[diff] [blame]6600requires_config_enabled MBEDTLS_CAMELLIA_C
6601requires_config_enabled MBEDTLS_AES_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6602run_test "Per-version suites: SSL3" \
Manuel Pégourié-Gonnardaa946b22019-03-01 10:14:58 +0100[diff] [blame]6603 "$P_SRV min_version=ssl3 version_suites=TLS-RSA-WITH-CAMELLIA-128-CBC-SHA,TLS-RSA-WITH-AES-256-CBC-SHA,TLS-RSA-WITH-AES-128-CBC-SHA,TLS-RSA-WITH-AES-128-GCM-SHA256" \
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]6604 "$P_CLI force_version=ssl3" \
6605 0 \
Manuel Pégourié-Gonnardaa946b22019-03-01 10:14:58 +0100[diff] [blame]6606 -c "Ciphersuite is TLS-RSA-WITH-CAMELLIA-128-CBC-SHA"
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]6607
Manuel Pégourié-Gonnardaa946b22019-03-01 10:14:58 +0100[diff] [blame]6608requires_config_enabled MBEDTLS_CAMELLIA_C
6609requires_config_enabled MBEDTLS_AES_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6610run_test "Per-version suites: TLS 1.0" \
Manuel Pégourié-Gonnardaa946b22019-03-01 10:14:58 +0100[diff] [blame]6611 "$P_SRV version_suites=TLS-RSA-WITH-CAMELLIA-128-CBC-SHA,TLS-RSA-WITH-AES-256-CBC-SHA,TLS-RSA-WITH-AES-128-CBC-SHA,TLS-RSA-WITH-AES-128-GCM-SHA256" \
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]6612 "$P_CLI force_version=tls1 arc4=1" \
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]6613 0 \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]6614 -c "Ciphersuite is TLS-RSA-WITH-AES-256-CBC-SHA"
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]6615
Manuel Pégourié-Gonnardaa946b22019-03-01 10:14:58 +0100[diff] [blame]6616requires_config_enabled MBEDTLS_CAMELLIA_C
6617requires_config_enabled MBEDTLS_AES_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6618run_test "Per-version suites: TLS 1.1" \
Manuel Pégourié-Gonnardaa946b22019-03-01 10:14:58 +0100[diff] [blame]6619 "$P_SRV version_suites=TLS-RSA-WITH-CAMELLIA-128-CBC-SHA,TLS-RSA-WITH-AES-256-CBC-SHA,TLS-RSA-WITH-AES-128-CBC-SHA,TLS-RSA-WITH-AES-128-GCM-SHA256" \
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]6620 "$P_CLI force_version=tls1_1" \
6621 0 \
6622 -c "Ciphersuite is TLS-RSA-WITH-AES-128-CBC-SHA"
6623
Manuel Pégourié-Gonnardaa946b22019-03-01 10:14:58 +0100[diff] [blame]6624requires_config_enabled MBEDTLS_CAMELLIA_C
6625requires_config_enabled MBEDTLS_AES_C
Przemek Stekielefc894b2022-10-06 12:15:21 +0200[diff] [blame]6626requires_config_enabled MBEDTLS_GCM_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6627run_test "Per-version suites: TLS 1.2" \
Manuel Pégourié-Gonnardaa946b22019-03-01 10:14:58 +0100[diff] [blame]6628 "$P_SRV version_suites=TLS-RSA-WITH-CAMELLIA-128-CBC-SHA,TLS-RSA-WITH-AES-256-CBC-SHA,TLS-RSA-WITH-AES-128-CBC-SHA,TLS-RSA-WITH-AES-128-GCM-SHA256" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6629 "$P_CLI force_version=tls12" \
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]6630 0 \
6631 -c "Ciphersuite is TLS-RSA-WITH-AES-128-GCM-SHA256"
6632
Manuel Pégourié-Gonnard4cc8c632015-07-23 12:24:03 +0200[diff] [blame]6633# Test for ClientHello without extensions
6634
Manuel Pégourié-Gonnardd55bc202015-08-04 16:22:30 +0200[diff] [blame]6635requires_gnutls
Manuel Pégourié-Gonnardbc4da292020-01-30 12:45:14 +0100[diff] [blame]6636run_test "ClientHello without extensions" \
Manuel Pégourié-Gonnard77cbeff2020-01-30 10:58:57 +0100[diff] [blame]6637 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]6638 "$G_CLI --priority=NORMAL:%NO_EXTENSIONS:%DISABLE_SAFE_RENEGOTIATION localhost" \
Gilles Peskine5d2511c2017-05-12 13:16:40 +0200[diff] [blame]6639 0 \
6640 -s "dumping 'client hello extensions' (0 bytes)"
6641
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6642# Tests for mbedtls_ssl_get_bytes_avail()
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]6643
Gilles Peskine5a1b3bd2022-04-06 23:35:56 +0200[diff] [blame]6644# The server first reads buffer_size-1 bytes, then reads the remainder.
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6645run_test "mbedtls_ssl_get_bytes_avail: no extra data" \
Gilles Peskine5a1b3bd2022-04-06 23:35:56 +0200[diff] [blame]6646 "$P_SRV buffer_size=100" \
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]6647 "$P_CLI request_size=100" \
6648 0 \
6649 -s "Read from client: 100 bytes read$"
6650
Gilles Peskine5a1b3bd2022-04-06 23:35:56 +0200[diff] [blame]6651run_test "mbedtls_ssl_get_bytes_avail: extra data (+1)" \
6652 "$P_SRV buffer_size=100" \
6653 "$P_CLI request_size=101" \
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]6654 0 \
Gilles Peskine5a1b3bd2022-04-06 23:35:56 +0200[diff] [blame]6655 -s "Read from client: 101 bytes read (100 + 1)"
6656
6657requires_max_content_len 200
6658run_test "mbedtls_ssl_get_bytes_avail: extra data (*2)" \
6659 "$P_SRV buffer_size=100" \
6660 "$P_CLI request_size=200" \
6661 0 \
6662 -s "Read from client: 200 bytes read (100 + 100)"
6663
6664run_test "mbedtls_ssl_get_bytes_avail: extra data (max)" \
6665 "$P_SRV buffer_size=100" \
6666 "$P_CLI request_size=$MAX_CONTENT_LEN" \
6667 0 \
6668 -s "Read from client: $MAX_CONTENT_LEN bytes read (100 + $((MAX_CONTENT_LEN - 100)))"
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]6669
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6670# Tests for small client packets
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6671
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6672run_test "Small client packet SSLv3 BlockCipher" \
Manuel Pégourié-Gonnard448ea502015-01-12 11:40:14 +0100[diff] [blame]6673 "$P_SRV min_version=ssl3" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6674 "$P_CLI request_size=1 force_version=ssl3 \
6675 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6676 0 \
6677 -s "Read from client: 1 bytes read"
6678
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6679run_test "Small client packet SSLv3 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]6680 "$P_SRV min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6681 "$P_CLI request_size=1 force_version=ssl3 \
6682 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
6683 0 \
6684 -s "Read from client: 1 bytes read"
6685
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6686run_test "Small client packet TLS 1.0 BlockCipher" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6687 "$P_SRV" \
6688 "$P_CLI request_size=1 force_version=tls1 \
6689 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6690 0 \
6691 -s "Read from client: 1 bytes read"
6692
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6693run_test "Small client packet TLS 1.0 BlockCipher, without EtM" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]6694 "$P_SRV" \
6695 "$P_CLI request_size=1 force_version=tls1 etm=0 \
6696 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6697 0 \
6698 -s "Read from client: 1 bytes read"
6699
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]6700requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6701run_test "Small client packet TLS 1.0 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6702 "$P_SRV trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6703 "$P_CLI request_size=1 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6704 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6705 0 \
6706 -s "Read from client: 1 bytes read"
6707
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]6708requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6709run_test "Small client packet TLS 1.0 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6710 "$P_SRV trunc_hmac=1" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6711 "$P_CLI request_size=1 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6712 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6713 0 \
6714 -s "Read from client: 1 bytes read"
6715
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6716run_test "Small client packet TLS 1.0 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]6717 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6718 "$P_CLI request_size=1 force_version=tls1 \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6719 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
6720 0 \
6721 -s "Read from client: 1 bytes read"
6722
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6723run_test "Small client packet TLS 1.0 StreamCipher, without EtM" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6724 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
6725 "$P_CLI request_size=1 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6726 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6727 0 \
6728 -s "Read from client: 1 bytes read"
6729
6730requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6731run_test "Small client packet TLS 1.0 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6732 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6733 "$P_CLI request_size=1 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6734 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6735 0 \
6736 -s "Read from client: 1 bytes read"
6737
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6738requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6739run_test "Small client packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6740 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
6741 "$P_CLI request_size=1 force_version=tls1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
6742 trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6743 0 \
6744 -s "Read from client: 1 bytes read"
6745
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6746run_test "Small client packet TLS 1.1 BlockCipher" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6747 "$P_SRV" \
6748 "$P_CLI request_size=1 force_version=tls1_1 \
6749 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6750 0 \
6751 -s "Read from client: 1 bytes read"
6752
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6753run_test "Small client packet TLS 1.1 BlockCipher, without EtM" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]6754 "$P_SRV" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6755 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6756 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6757 0 \
6758 -s "Read from client: 1 bytes read"
6759
6760requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6761run_test "Small client packet TLS 1.1 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6762 "$P_SRV trunc_hmac=1" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6763 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6764 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6765 0 \
6766 -s "Read from client: 1 bytes read"
6767
6768requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6769run_test "Small client packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6770 "$P_SRV trunc_hmac=1" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6771 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6772 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]6773 0 \
6774 -s "Read from client: 1 bytes read"
6775
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6776run_test "Small client packet TLS 1.1 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]6777 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6778 "$P_CLI request_size=1 force_version=tls1_1 \
6779 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
6780 0 \
6781 -s "Read from client: 1 bytes read"
6782
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6783run_test "Small client packet TLS 1.1 StreamCipher, without EtM" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6784 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6785 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6786 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6787 0 \
6788 -s "Read from client: 1 bytes read"
6789
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6790requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6791run_test "Small client packet TLS 1.1 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6792 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6793 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6794 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6795 0 \
6796 -s "Read from client: 1 bytes read"
6797
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]6798requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6799run_test "Small client packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6800 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6801 "$P_CLI request_size=1 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6802 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6803 0 \
6804 -s "Read from client: 1 bytes read"
6805
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6806run_test "Small client packet TLS 1.2 BlockCipher" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6807 "$P_SRV" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6808 "$P_CLI request_size=1 force_version=tls12 \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6809 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6810 0 \
6811 -s "Read from client: 1 bytes read"
6812
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6813run_test "Small client packet TLS 1.2 BlockCipher, without EtM" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]6814 "$P_SRV" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6815 "$P_CLI request_size=1 force_version=tls12 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6816 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]6817 0 \
6818 -s "Read from client: 1 bytes read"
6819
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6820run_test "Small client packet TLS 1.2 BlockCipher larger MAC" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6821 "$P_SRV" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6822 "$P_CLI request_size=1 force_version=tls12 \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]6823 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6824 0 \
6825 -s "Read from client: 1 bytes read"
6826
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]6827requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6828run_test "Small client packet TLS 1.2 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6829 "$P_SRV trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6830 "$P_CLI request_size=1 force_version=tls12 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6831 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6832 0 \
6833 -s "Read from client: 1 bytes read"
6834
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6835requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6836run_test "Small client packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6837 "$P_SRV trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6838 "$P_CLI request_size=1 force_version=tls12 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6839 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6840 0 \
6841 -s "Read from client: 1 bytes read"
6842
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6843run_test "Small client packet TLS 1.2 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]6844 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6845 "$P_CLI request_size=1 force_version=tls12 \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6846 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
6847 0 \
6848 -s "Read from client: 1 bytes read"
6849
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6850run_test "Small client packet TLS 1.2 StreamCipher, without EtM" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]6851 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6852 "$P_CLI request_size=1 force_version=tls12 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6853 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6854 0 \
6855 -s "Read from client: 1 bytes read"
6856
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]6857requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6858run_test "Small client packet TLS 1.2 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6859 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6860 "$P_CLI request_size=1 force_version=tls12 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6861 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6862 0 \
6863 -s "Read from client: 1 bytes read"
6864
Hanno Becker8501f982017-11-10 08:59:04 +0000[diff] [blame]6865requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6866run_test "Small client packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6867 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6868 "$P_CLI request_size=1 force_version=tls12 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6869 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6870 0 \
6871 -s "Read from client: 1 bytes read"
6872
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6873run_test "Small client packet TLS 1.2 AEAD" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6874 "$P_SRV" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6875 "$P_CLI request_size=1 force_version=tls12 \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6876 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
6877 0 \
6878 -s "Read from client: 1 bytes read"
6879
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6880run_test "Small client packet TLS 1.2 AEAD shorter tag" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6881 "$P_SRV" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6882 "$P_CLI request_size=1 force_version=tls12 \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]6883 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
6884 0 \
6885 -s "Read from client: 1 bytes read"
6886
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6887# Tests for small client packets in DTLS
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6888
6889requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6890run_test "Small client packet DTLS 1.0" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6891 "$P_SRV dtls=1 force_version=dtls1" \
6892 "$P_CLI dtls=1 request_size=1 \
6893 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6894 0 \
6895 -s "Read from client: 1 bytes read"
6896
6897requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6898run_test "Small client packet DTLS 1.0, without EtM" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6899 "$P_SRV dtls=1 force_version=dtls1 etm=0" \
6900 "$P_CLI dtls=1 request_size=1 \
6901 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6902 0 \
6903 -s "Read from client: 1 bytes read"
6904
6905requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6906requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6907run_test "Small client packet DTLS 1.0, truncated hmac" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6908 "$P_SRV dtls=1 force_version=dtls1 trunc_hmac=1" \
6909 "$P_CLI dtls=1 request_size=1 trunc_hmac=1 \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6910 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6911 0 \
6912 -s "Read from client: 1 bytes read"
6913
6914requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6915requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6916run_test "Small client packet DTLS 1.0, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6917 "$P_SRV dtls=1 force_version=dtls1 trunc_hmac=1 etm=0" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6918 "$P_CLI dtls=1 request_size=1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6919 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6920 0 \
6921 -s "Read from client: 1 bytes read"
6922
6923requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6924run_test "Small client packet DTLS 1.2" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6925 "$P_SRV dtls=1 force_version=dtls12" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6926 "$P_CLI dtls=1 request_size=1 \
6927 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6928 0 \
6929 -s "Read from client: 1 bytes read"
6930
6931requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6932run_test "Small client packet DTLS 1.2, without EtM" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6933 "$P_SRV dtls=1 force_version=dtls12 etm=0" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6934 "$P_CLI dtls=1 request_size=1 \
6935 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6936 0 \
6937 -s "Read from client: 1 bytes read"
6938
6939requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6940requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6941run_test "Small client packet DTLS 1.2, truncated hmac" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6942 "$P_SRV dtls=1 force_version=dtls12 trunc_hmac=1" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6943 "$P_CLI dtls=1 request_size=1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6944 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6945 0 \
6946 -s "Read from client: 1 bytes read"
6947
6948requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
6949requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6950run_test "Small client packet DTLS 1.2, without EtM, truncated MAC" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]6951 "$P_SRV dtls=1 force_version=dtls12 trunc_hmac=1 etm=0" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6952 "$P_CLI dtls=1 request_size=1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]6953 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]6954 0 \
6955 -s "Read from client: 1 bytes read"
6956
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6957# Tests for small server packets
6958
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6959run_test "Small server packet SSLv3 BlockCipher" \
6960 "$P_SRV response_size=1 min_version=ssl3" \
6961 "$P_CLI force_version=ssl3 \
6962 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6963 0 \
6964 -c "Read from server: 1 bytes read"
6965
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]6966run_test "Small server packet SSLv3 StreamCipher" \
6967 "$P_SRV response_size=1 min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
6968 "$P_CLI force_version=ssl3 \
6969 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
6970 0 \
6971 -c "Read from server: 1 bytes read"
6972
6973run_test "Small server packet TLS 1.0 BlockCipher" \
6974 "$P_SRV response_size=1" \
6975 "$P_CLI force_version=tls1 \
6976 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6977 0 \
6978 -c "Read from server: 1 bytes read"
6979
6980run_test "Small server packet TLS 1.0 BlockCipher, without EtM" \
6981 "$P_SRV response_size=1" \
6982 "$P_CLI force_version=tls1 etm=0 \
6983 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
6984 0 \
6985 -c "Read from server: 1 bytes read"
6986
6987requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
6988run_test "Small server packet TLS 1.0 BlockCipher, truncated MAC" \
6989 "$P_SRV response_size=1 trunc_hmac=1" \
6990 "$P_CLI force_version=tls1 \
6991 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
6992 0 \
6993 -c "Read from server: 1 bytes read"
6994
6995requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
6996run_test "Small server packet TLS 1.0 BlockCipher, without EtM, truncated MAC" \
6997 "$P_SRV response_size=1 trunc_hmac=1" \
6998 "$P_CLI force_version=tls1 \
6999 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
7000 0 \
7001 -c "Read from server: 1 bytes read"
7002
7003run_test "Small server packet TLS 1.0 StreamCipher" \
7004 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7005 "$P_CLI force_version=tls1 \
7006 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7007 0 \
7008 -c "Read from server: 1 bytes read"
7009
7010run_test "Small server packet TLS 1.0 StreamCipher, without EtM" \
7011 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7012 "$P_CLI force_version=tls1 \
7013 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
7014 0 \
7015 -c "Read from server: 1 bytes read"
7016
7017requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7018run_test "Small server packet TLS 1.0 StreamCipher, truncated MAC" \
7019 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7020 "$P_CLI force_version=tls1 \
7021 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7022 0 \
7023 -c "Read from server: 1 bytes read"
7024
7025requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7026run_test "Small server packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
7027 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7028 "$P_CLI force_version=tls1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
7029 trunc_hmac=1 etm=0" \
7030 0 \
7031 -c "Read from server: 1 bytes read"
7032
7033run_test "Small server packet TLS 1.1 BlockCipher" \
7034 "$P_SRV response_size=1" \
7035 "$P_CLI force_version=tls1_1 \
7036 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7037 0 \
7038 -c "Read from server: 1 bytes read"
7039
7040run_test "Small server packet TLS 1.1 BlockCipher, without EtM" \
7041 "$P_SRV response_size=1" \
7042 "$P_CLI force_version=tls1_1 \
7043 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
7044 0 \
7045 -c "Read from server: 1 bytes read"
7046
7047requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7048run_test "Small server packet TLS 1.1 BlockCipher, truncated MAC" \
7049 "$P_SRV response_size=1 trunc_hmac=1" \
7050 "$P_CLI force_version=tls1_1 \
7051 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
7052 0 \
7053 -c "Read from server: 1 bytes read"
7054
7055requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7056run_test "Small server packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
7057 "$P_SRV response_size=1 trunc_hmac=1" \
7058 "$P_CLI force_version=tls1_1 \
7059 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
7060 0 \
7061 -c "Read from server: 1 bytes read"
7062
7063run_test "Small server packet TLS 1.1 StreamCipher" \
7064 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7065 "$P_CLI force_version=tls1_1 \
7066 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7067 0 \
7068 -c "Read from server: 1 bytes read"
7069
7070run_test "Small server packet TLS 1.1 StreamCipher, without EtM" \
7071 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7072 "$P_CLI force_version=tls1_1 \
7073 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
7074 0 \
7075 -c "Read from server: 1 bytes read"
7076
7077requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7078run_test "Small server packet TLS 1.1 StreamCipher, truncated MAC" \
7079 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7080 "$P_CLI force_version=tls1_1 \
7081 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7082 0 \
7083 -c "Read from server: 1 bytes read"
7084
7085requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7086run_test "Small server packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
7087 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7088 "$P_CLI force_version=tls1_1 \
7089 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
7090 0 \
7091 -c "Read from server: 1 bytes read"
7092
7093run_test "Small server packet TLS 1.2 BlockCipher" \
7094 "$P_SRV response_size=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7095 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7096 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7097 0 \
7098 -c "Read from server: 1 bytes read"
7099
7100run_test "Small server packet TLS 1.2 BlockCipher, without EtM" \
7101 "$P_SRV response_size=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7102 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7103 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
7104 0 \
7105 -c "Read from server: 1 bytes read"
7106
7107run_test "Small server packet TLS 1.2 BlockCipher larger MAC" \
7108 "$P_SRV response_size=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7109 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7110 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
7111 0 \
7112 -c "Read from server: 1 bytes read"
7113
7114requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7115run_test "Small server packet TLS 1.2 BlockCipher, truncated MAC" \
7116 "$P_SRV response_size=1 trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7117 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7118 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
7119 0 \
7120 -c "Read from server: 1 bytes read"
7121
7122requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7123run_test "Small server packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
7124 "$P_SRV response_size=1 trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7125 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7126 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
7127 0 \
7128 -c "Read from server: 1 bytes read"
7129
7130run_test "Small server packet TLS 1.2 StreamCipher" \
7131 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7132 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7133 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7134 0 \
7135 -c "Read from server: 1 bytes read"
7136
7137run_test "Small server packet TLS 1.2 StreamCipher, without EtM" \
7138 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7139 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7140 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
7141 0 \
7142 -c "Read from server: 1 bytes read"
7143
7144requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7145run_test "Small server packet TLS 1.2 StreamCipher, truncated MAC" \
7146 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7147 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7148 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7149 0 \
7150 -c "Read from server: 1 bytes read"
7151
7152requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7153run_test "Small server packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
7154 "$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7155 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7156 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
7157 0 \
7158 -c "Read from server: 1 bytes read"
7159
7160run_test "Small server packet TLS 1.2 AEAD" \
7161 "$P_SRV response_size=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7162 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7163 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
7164 0 \
7165 -c "Read from server: 1 bytes read"
7166
7167run_test "Small server packet TLS 1.2 AEAD shorter tag" \
7168 "$P_SRV response_size=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7169 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7170 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
7171 0 \
7172 -c "Read from server: 1 bytes read"
7173
7174# Tests for small server packets in DTLS
7175
7176requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
7177run_test "Small server packet DTLS 1.0" \
7178 "$P_SRV dtls=1 response_size=1 force_version=dtls1" \
7179 "$P_CLI dtls=1 \
7180 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7181 0 \
7182 -c "Read from server: 1 bytes read"
7183
7184requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
7185run_test "Small server packet DTLS 1.0, without EtM" \
7186 "$P_SRV dtls=1 response_size=1 force_version=dtls1 etm=0" \
7187 "$P_CLI dtls=1 \
7188 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7189 0 \
7190 -c "Read from server: 1 bytes read"
7191
7192requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
7193requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7194run_test "Small server packet DTLS 1.0, truncated hmac" \
7195 "$P_SRV dtls=1 response_size=1 force_version=dtls1 trunc_hmac=1" \
7196 "$P_CLI dtls=1 trunc_hmac=1 \
7197 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7198 0 \
7199 -c "Read from server: 1 bytes read"
7200
7201requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
7202requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7203run_test "Small server packet DTLS 1.0, without EtM, truncated MAC" \
7204 "$P_SRV dtls=1 response_size=1 force_version=dtls1 trunc_hmac=1 etm=0" \
7205 "$P_CLI dtls=1 \
7206 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
7207 0 \
7208 -c "Read from server: 1 bytes read"
7209
7210requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
7211run_test "Small server packet DTLS 1.2" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7212 "$P_SRV dtls=1 response_size=1 force_version=dtls12" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7213 "$P_CLI dtls=1 \
7214 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7215 0 \
7216 -c "Read from server: 1 bytes read"
7217
7218requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
7219run_test "Small server packet DTLS 1.2, without EtM" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7220 "$P_SRV dtls=1 response_size=1 force_version=dtls12 etm=0" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7221 "$P_CLI dtls=1 \
7222 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7223 0 \
7224 -c "Read from server: 1 bytes read"
7225
7226requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
7227requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7228run_test "Small server packet DTLS 1.2, truncated hmac" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7229 "$P_SRV dtls=1 response_size=1 force_version=dtls12 trunc_hmac=1" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7230 "$P_CLI dtls=1 \
7231 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
7232 0 \
7233 -c "Read from server: 1 bytes read"
7234
7235requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
7236requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7237run_test "Small server packet DTLS 1.2, without EtM, truncated MAC" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7238 "$P_SRV dtls=1 response_size=1 force_version=dtls12 trunc_hmac=1 etm=0" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7239 "$P_CLI dtls=1 \
7240 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
7241 0 \
7242 -c "Read from server: 1 bytes read"
7243
Janos Follath00efff72016-05-06 13:48:23 +0100[diff] [blame]7244# A test for extensions in SSLv3
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]7245requires_max_content_len 4096
Janos Follath00efff72016-05-06 13:48:23 +0100[diff] [blame]7246run_test "SSLv3 with extensions, server side" \
7247 "$P_SRV min_version=ssl3 debug_level=3" \
7248 "$P_CLI force_version=ssl3 tickets=1 max_frag_len=4096 alpn=abc,1234" \
7249 0 \
7250 -S "dumping 'client hello extensions'" \
7251 -S "server hello, total extension length:"
7252
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7253# Test for large client packets
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7254
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7255# How many fragments do we expect to write $1 bytes?
7256fragments_for_write() {
7257 echo "$(( ( $1 + $MAX_OUT_LEN - 1 ) / $MAX_OUT_LEN ))"
7258}
7259
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7260run_test "Large client packet SSLv3 BlockCipher" \
Manuel Pégourié-Gonnard448ea502015-01-12 11:40:14 +0100[diff] [blame]7261 "$P_SRV min_version=ssl3" \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]7262 "$P_CLI request_size=16384 force_version=ssl3 recsplit=0 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7263 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7264 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7265 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7266 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7267
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7268run_test "Large client packet SSLv3 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]7269 "$P_SRV min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7270 "$P_CLI request_size=16384 force_version=ssl3 \
7271 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7272 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7273 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7274 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7275
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7276run_test "Large client packet TLS 1.0 BlockCipher" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7277 "$P_SRV" \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]7278 "$P_CLI request_size=16384 force_version=tls1 recsplit=0 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7279 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7280 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7281 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7282 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7283
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7284run_test "Large client packet TLS 1.0 BlockCipher, without EtM" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7285 "$P_SRV" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7286 "$P_CLI request_size=16384 force_version=tls1 etm=0 recsplit=0 \
7287 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7288 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7289 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7290
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]7291requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7292run_test "Large client packet TLS 1.0 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7293 "$P_SRV trunc_hmac=1" \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]7294 "$P_CLI request_size=16384 force_version=tls1 recsplit=0 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7295 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7296 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7297 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7298 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7299
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]7300requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7301run_test "Large client packet TLS 1.0 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7302 "$P_SRV trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7303 "$P_CLI request_size=16384 force_version=tls1 etm=0 recsplit=0 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7304 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7305 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7306 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7307
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7308run_test "Large client packet TLS 1.0 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]7309 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7310 "$P_CLI request_size=16384 force_version=tls1 \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7311 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7312 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7313 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7314
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7315run_test "Large client packet TLS 1.0 StreamCipher, without EtM" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7316 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7317 "$P_CLI request_size=16384 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7318 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7319 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7320 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7321
7322requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7323run_test "Large client packet TLS 1.0 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7324 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7325 "$P_CLI request_size=16384 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7326 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7327 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7328 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7329
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7330requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7331run_test "Large client packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7332 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7333 "$P_CLI request_size=16384 force_version=tls1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7334 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7335 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7336 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7337 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7338
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7339run_test "Large client packet TLS 1.1 BlockCipher" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7340 "$P_SRV" \
7341 "$P_CLI request_size=16384 force_version=tls1_1 \
7342 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7343 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7344 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7345 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7346
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7347run_test "Large client packet TLS 1.1 BlockCipher, without EtM" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7348 "$P_SRV" \
7349 "$P_CLI request_size=16384 force_version=tls1_1 etm=0 \
7350 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7351 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7352 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7353
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]7354requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7355run_test "Large client packet TLS 1.1 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7356 "$P_SRV trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7357 "$P_CLI request_size=16384 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7358 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7359 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7360 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7361
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]7362requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7363run_test "Large client packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7364 "$P_SRV trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7365 "$P_CLI request_size=16384 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7366 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7367 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7368 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7369
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7370run_test "Large client packet TLS 1.1 StreamCipher" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7371 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7372 "$P_CLI request_size=16384 force_version=tls1_1 \
7373 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7374 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7375 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7376 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7377
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7378run_test "Large client packet TLS 1.1 StreamCipher, without EtM" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7379 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7380 "$P_CLI request_size=16384 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7381 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7382 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7383 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7384 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7385
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7386requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7387run_test "Large client packet TLS 1.1 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7388 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7389 "$P_CLI request_size=16384 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7390 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7391 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7392 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7393
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7394requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7395run_test "Large client packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7396 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7397 "$P_CLI request_size=16384 force_version=tls1_1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7398 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7399 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7400 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7401 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7402
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7403run_test "Large client packet TLS 1.2 BlockCipher" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7404 "$P_SRV" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7405 "$P_CLI request_size=16384 force_version=tls12 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7406 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7407 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7408 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7409 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7410
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7411run_test "Large client packet TLS 1.2 BlockCipher, without EtM" \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7412 "$P_SRV" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7413 "$P_CLI request_size=16384 force_version=tls12 etm=0 \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7414 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7415 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7416 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7417
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7418run_test "Large client packet TLS 1.2 BlockCipher larger MAC" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7419 "$P_SRV" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7420 "$P_CLI request_size=16384 force_version=tls12 \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]7421 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7422 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7423 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7424 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7425
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]7426requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7427run_test "Large client packet TLS 1.2 BlockCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7428 "$P_SRV trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7429 "$P_CLI request_size=16384 force_version=tls12 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7430 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7431 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7432 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7433
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7434requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7435run_test "Large client packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7436 "$P_SRV trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7437 "$P_CLI request_size=16384 force_version=tls12 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7438 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7439 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7440 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7441 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7442
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7443run_test "Large client packet TLS 1.2 StreamCipher" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]7444 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7445 "$P_CLI request_size=16384 force_version=tls12 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7446 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7447 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7448 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7449 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7450
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7451run_test "Large client packet TLS 1.2 StreamCipher, without EtM" \
Manuel Pégourié-Gonnardea0920f2015-03-24 09:50:15 +0100[diff] [blame]7452 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7453 "$P_CLI request_size=16384 force_version=tls12 \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7454 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
7455 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7456 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7457
Hanno Becker32c55012017-11-10 08:42:54 +0000[diff] [blame]7458requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7459run_test "Large client packet TLS 1.2 StreamCipher, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7460 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7461 "$P_CLI request_size=16384 force_version=tls12 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7462 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7463 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7464 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7465
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]7466requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7467run_test "Large client packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7468 "$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7469 "$P_CLI request_size=16384 force_version=tls12 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]7470 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7471 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7472 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7473 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7474
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7475run_test "Large client packet TLS 1.2 AEAD" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7476 "$P_SRV" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7477 "$P_CLI request_size=16384 force_version=tls12 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7478 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
7479 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7480 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7481 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7482
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7483run_test "Large client packet TLS 1.2 AEAD shorter tag" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7484 "$P_SRV" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7485 "$P_CLI request_size=16384 force_version=tls12 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7486 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
7487 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]7488 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
7489 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]7490
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7491# Test for large server packets
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]7492# The tests below fail when the server's OUT_CONTENT_LEN is less than 16384.
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7493run_test "Large server packet SSLv3 StreamCipher" \
7494 "$P_SRV response_size=16384 min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7495 "$P_CLI force_version=ssl3 \
7496 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7497 0 \
7498 -c "Read from server: 16384 bytes read"
7499
Andrzej Kurek6a4f2242018-08-27 08:00:13 -0400[diff] [blame]7500# Checking next 4 tests logs for 1n-1 split against BEAST too
Andrzej Kurek6a4f2242018-08-27 08:00:13 -0400[diff] [blame]7501run_test "Large server packet SSLv3 BlockCipher" \
7502 "$P_SRV response_size=16384 min_version=ssl3" \
7503 "$P_CLI force_version=ssl3 recsplit=0 \
7504 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7505 0 \
7506 -c "Read from server: 1 bytes read"\
7507 -c "16383 bytes read"\
7508 -C "Read from server: 16384 bytes read"
7509
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7510run_test "Large server packet TLS 1.0 BlockCipher" \
7511 "$P_SRV response_size=16384" \
7512 "$P_CLI force_version=tls1 recsplit=0 \
7513 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7514 0 \
7515 -c "Read from server: 1 bytes read"\
7516 -c "16383 bytes read"\
7517 -C "Read from server: 16384 bytes read"
7518
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7519run_test "Large server packet TLS 1.0 BlockCipher, without EtM" \
7520 "$P_SRV response_size=16384" \
7521 "$P_CLI force_version=tls1 etm=0 recsplit=0 \
7522 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7523 0 \
7524 -c "Read from server: 1 bytes read"\
7525 -c "16383 bytes read"\
7526 -C "Read from server: 16384 bytes read"
7527
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7528requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7529run_test "Large server packet TLS 1.0 BlockCipher truncated MAC" \
7530 "$P_SRV response_size=16384" \
7531 "$P_CLI force_version=tls1 recsplit=0 \
7532 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA \
7533 trunc_hmac=1" \
7534 0 \
7535 -c "Read from server: 1 bytes read"\
7536 -c "16383 bytes read"\
7537 -C "Read from server: 16384 bytes read"
7538
7539requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7540run_test "Large server packet TLS 1.0 StreamCipher truncated MAC" \
7541 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7542 "$P_CLI force_version=tls1 \
7543 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
7544 trunc_hmac=1" \
7545 0 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7546 -s "16384 bytes written in 1 fragments" \
7547 -c "Read from server: 16384 bytes read"
7548
7549run_test "Large server packet TLS 1.0 StreamCipher" \
7550 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7551 "$P_CLI force_version=tls1 \
7552 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7553 0 \
7554 -s "16384 bytes written in 1 fragments" \
7555 -c "Read from server: 16384 bytes read"
7556
7557run_test "Large server packet TLS 1.0 StreamCipher, without EtM" \
7558 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7559 "$P_CLI force_version=tls1 \
7560 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
7561 0 \
7562 -s "16384 bytes written in 1 fragments" \
7563 -c "Read from server: 16384 bytes read"
7564
7565requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7566run_test "Large server packet TLS 1.0 StreamCipher, truncated MAC" \
7567 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7568 "$P_CLI force_version=tls1 \
7569 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7570 0 \
7571 -s "16384 bytes written in 1 fragments" \
7572 -c "Read from server: 16384 bytes read"
7573
7574requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7575run_test "Large server packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
7576 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7577 "$P_CLI force_version=tls1 \
7578 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
7579 0 \
7580 -s "16384 bytes written in 1 fragments" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7581 -c "Read from server: 16384 bytes read"
7582
7583run_test "Large server packet TLS 1.1 BlockCipher" \
7584 "$P_SRV response_size=16384" \
7585 "$P_CLI force_version=tls1_1 \
7586 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7587 0 \
7588 -c "Read from server: 16384 bytes read"
7589
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7590run_test "Large server packet TLS 1.1 BlockCipher, without EtM" \
7591 "$P_SRV response_size=16384" \
7592 "$P_CLI force_version=tls1_1 etm=0 \
7593 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7594 0 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7595 -s "16384 bytes written in 1 fragments" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7596 -c "Read from server: 16384 bytes read"
7597
7598requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7599run_test "Large server packet TLS 1.1 BlockCipher truncated MAC" \
7600 "$P_SRV response_size=16384" \
7601 "$P_CLI force_version=tls1_1 \
7602 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA \
7603 trunc_hmac=1" \
7604 0 \
7605 -c "Read from server: 16384 bytes read"
7606
7607requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7608run_test "Large server packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
7609 "$P_SRV response_size=16384 trunc_hmac=1" \
7610 "$P_CLI force_version=tls1_1 \
7611 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
7612 0 \
7613 -s "16384 bytes written in 1 fragments" \
7614 -c "Read from server: 16384 bytes read"
7615
7616run_test "Large server packet TLS 1.1 StreamCipher" \
7617 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7618 "$P_CLI force_version=tls1_1 \
7619 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7620 0 \
7621 -c "Read from server: 16384 bytes read"
7622
7623run_test "Large server packet TLS 1.1 StreamCipher, without EtM" \
7624 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7625 "$P_CLI force_version=tls1_1 \
7626 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
7627 0 \
7628 -s "16384 bytes written in 1 fragments" \
7629 -c "Read from server: 16384 bytes read"
7630
7631requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7632run_test "Large server packet TLS 1.1 StreamCipher truncated MAC" \
7633 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7634 "$P_CLI force_version=tls1_1 \
7635 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
7636 trunc_hmac=1" \
7637 0 \
7638 -c "Read from server: 16384 bytes read"
7639
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7640run_test "Large server packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
7641 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
7642 "$P_CLI force_version=tls1_1 \
7643 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
7644 0 \
7645 -s "16384 bytes written in 1 fragments" \
7646 -c "Read from server: 16384 bytes read"
7647
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7648run_test "Large server packet TLS 1.2 BlockCipher" \
7649 "$P_SRV response_size=16384" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7650 "$P_CLI force_version=tls12 \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7651 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7652 0 \
7653 -c "Read from server: 16384 bytes read"
7654
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7655run_test "Large server packet TLS 1.2 BlockCipher, without EtM" \
7656 "$P_SRV response_size=16384" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7657 "$P_CLI force_version=tls12 etm=0 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7658 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
7659 0 \
7660 -s "16384 bytes written in 1 fragments" \
7661 -c "Read from server: 16384 bytes read"
7662
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7663run_test "Large server packet TLS 1.2 BlockCipher larger MAC" \
7664 "$P_SRV response_size=16384" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7665 "$P_CLI force_version=tls12 \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7666 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
7667 0 \
7668 -c "Read from server: 16384 bytes read"
7669
7670requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7671run_test "Large server packet TLS 1.2 BlockCipher truncated MAC" \
7672 "$P_SRV response_size=16384" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7673 "$P_CLI force_version=tls12 \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7674 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA \
7675 trunc_hmac=1" \
7676 0 \
7677 -c "Read from server: 16384 bytes read"
7678
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7679run_test "Large server packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
7680 "$P_SRV response_size=16384 trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7681 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7682 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
7683 0 \
7684 -s "16384 bytes written in 1 fragments" \
7685 -c "Read from server: 16384 bytes read"
7686
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7687run_test "Large server packet TLS 1.2 StreamCipher" \
7688 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7689 "$P_CLI force_version=tls12 \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7690 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
7691 0 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7692 -s "16384 bytes written in 1 fragments" \
7693 -c "Read from server: 16384 bytes read"
7694
7695run_test "Large server packet TLS 1.2 StreamCipher, without EtM" \
7696 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7697 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7698 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
7699 0 \
7700 -s "16384 bytes written in 1 fragments" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7701 -c "Read from server: 16384 bytes read"
7702
7703requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7704run_test "Large server packet TLS 1.2 StreamCipher truncated MAC" \
7705 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7706 "$P_CLI force_version=tls12 \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7707 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
7708 trunc_hmac=1" \
7709 0 \
7710 -c "Read from server: 16384 bytes read"
7711
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7712requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
7713run_test "Large server packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
7714 "$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7715 "$P_CLI force_version=tls12 \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]7716 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
7717 0 \
7718 -s "16384 bytes written in 1 fragments" \
7719 -c "Read from server: 16384 bytes read"
7720
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7721run_test "Large server packet TLS 1.2 AEAD" \
7722 "$P_SRV response_size=16384" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7723 "$P_CLI force_version=tls12 \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7724 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
7725 0 \
7726 -c "Read from server: 16384 bytes read"
7727
7728run_test "Large server packet TLS 1.2 AEAD shorter tag" \
7729 "$P_SRV response_size=16384" \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]7730 "$P_CLI force_version=tls12 \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]7731 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
7732 0 \
7733 -c "Read from server: 16384 bytes read"
7734
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7735# Tests for restartable ECC
7736
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7737requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
7738requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7739requires_config_enabled MBEDTLS_ECP_RESTARTABLE
7740run_test "EC restart: TLS, default" \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]7741 "$P_SRV auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7742 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]7743 key_file=data_files/server5.key crt_file=data_files/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7744 debug_level=1" \
7745 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]7746 -C "x509_verify_cert.*4b00" \
7747 -C "mbedtls_pk_verify.*4b00" \
7748 -C "mbedtls_ecdh_make_public.*4b00" \
7749 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7750
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7751requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
7752requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7753requires_config_enabled MBEDTLS_ECP_RESTARTABLE
7754run_test "EC restart: TLS, max_ops=0" \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]7755 "$P_SRV auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7756 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]7757 key_file=data_files/server5.key crt_file=data_files/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7758 debug_level=1 ec_max_ops=0" \
7759 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]7760 -C "x509_verify_cert.*4b00" \
7761 -C "mbedtls_pk_verify.*4b00" \
7762 -C "mbedtls_ecdh_make_public.*4b00" \
7763 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7764
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7765requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
7766requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7767requires_config_enabled MBEDTLS_ECP_RESTARTABLE
7768run_test "EC restart: TLS, max_ops=65535" \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]7769 "$P_SRV auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7770 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]7771 key_file=data_files/server5.key crt_file=data_files/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7772 debug_level=1 ec_max_ops=65535" \
7773 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]7774 -C "x509_verify_cert.*4b00" \
7775 -C "mbedtls_pk_verify.*4b00" \
7776 -C "mbedtls_ecdh_make_public.*4b00" \
7777 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7778
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7779requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
7780requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7781requires_config_enabled MBEDTLS_ECP_RESTARTABLE
7782run_test "EC restart: TLS, max_ops=1000" \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]7783 "$P_SRV auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7784 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]7785 key_file=data_files/server5.key crt_file=data_files/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7786 debug_level=1 ec_max_ops=1000" \
7787 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]7788 -c "x509_verify_cert.*4b00" \
7789 -c "mbedtls_pk_verify.*4b00" \
7790 -c "mbedtls_ecdh_make_public.*4b00" \
7791 -c "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7792
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7793requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
7794requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7795requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]7796run_test "EC restart: TLS, max_ops=1000, badsign" \
7797 "$P_SRV auth_mode=required \
7798 crt_file=data_files/server5-badsign.crt \
7799 key_file=data_files/server5.key" \
7800 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
7801 key_file=data_files/server5.key crt_file=data_files/server5.crt \
7802 debug_level=1 ec_max_ops=1000" \
7803 1 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]7804 -c "x509_verify_cert.*4b00" \
7805 -C "mbedtls_pk_verify.*4b00" \
7806 -C "mbedtls_ecdh_make_public.*4b00" \
7807 -C "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]7808 -c "! The certificate is not correctly signed by the trusted CA" \
7809 -c "! mbedtls_ssl_handshake returned" \
7810 -c "X509 - Certificate verification failed"
7811
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7812requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
7813requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]7814requires_config_enabled MBEDTLS_ECP_RESTARTABLE
7815run_test "EC restart: TLS, max_ops=1000, auth_mode=optional badsign" \
7816 "$P_SRV auth_mode=required \
7817 crt_file=data_files/server5-badsign.crt \
7818 key_file=data_files/server5.key" \
7819 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
7820 key_file=data_files/server5.key crt_file=data_files/server5.crt \
7821 debug_level=1 ec_max_ops=1000 auth_mode=optional" \
7822 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]7823 -c "x509_verify_cert.*4b00" \
7824 -c "mbedtls_pk_verify.*4b00" \
7825 -c "mbedtls_ecdh_make_public.*4b00" \
7826 -c "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]7827 -c "! The certificate is not correctly signed by the trusted CA" \
7828 -C "! mbedtls_ssl_handshake returned" \
7829 -C "X509 - Certificate verification failed"
7830
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7831requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
7832requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]7833requires_config_enabled MBEDTLS_ECP_RESTARTABLE
7834run_test "EC restart: TLS, max_ops=1000, auth_mode=none badsign" \
7835 "$P_SRV auth_mode=required \
7836 crt_file=data_files/server5-badsign.crt \
7837 key_file=data_files/server5.key" \
7838 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
7839 key_file=data_files/server5.key crt_file=data_files/server5.crt \
7840 debug_level=1 ec_max_ops=1000 auth_mode=none" \
7841 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]7842 -C "x509_verify_cert.*4b00" \
7843 -c "mbedtls_pk_verify.*4b00" \
7844 -c "mbedtls_ecdh_make_public.*4b00" \
7845 -c "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]7846 -C "! The certificate is not correctly signed by the trusted CA" \
7847 -C "! mbedtls_ssl_handshake returned" \
7848 -C "X509 - Certificate verification failed"
7849
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7850requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
7851requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]7852requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7853run_test "EC restart: DTLS, max_ops=1000" \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]7854 "$P_SRV auth_mode=required dtls=1" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7855 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard862cde52017-05-17 11:56:15 +0200[diff] [blame]7856 key_file=data_files/server5.key crt_file=data_files/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7857 dtls=1 debug_level=1 ec_max_ops=1000" \
7858 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]7859 -c "x509_verify_cert.*4b00" \
7860 -c "mbedtls_pk_verify.*4b00" \
7861 -c "mbedtls_ecdh_make_public.*4b00" \
7862 -c "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]7863
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7864requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
7865requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]7866requires_config_enabled MBEDTLS_ECP_RESTARTABLE
7867run_test "EC restart: TLS, max_ops=1000 no client auth" \
7868 "$P_SRV" \
7869 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
7870 debug_level=1 ec_max_ops=1000" \
7871 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]7872 -c "x509_verify_cert.*4b00" \
7873 -c "mbedtls_pk_verify.*4b00" \
7874 -c "mbedtls_ecdh_make_public.*4b00" \
7875 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]7876
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7877
7878# Restartable is only for ECDHE-ECDSA, with another ciphersuite we expect no
7879# restartable behaviour at all (not even client auth).
7880# This is the same as "EC restart: TLS, max_ops=1000" except with ECDHE-RSA,
7881# and all 4 assertions negated.
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]7882requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Manuel Pégourié-Gonnard875d1eb2022-12-06 10:42:44 +0100[diff] [blame]7883requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
7884requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7885run_test "EC restart: TLS, max_ops=1000, ECDHE-RSA" \
7886 "$P_SRV curves=secp256r1 auth_mode=required" \
7887 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256 \
7888 key_file=data_files/server5.key crt_file=data_files/server5.crt \
7889 debug_level=1 ec_max_ops=1000" \
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]7890 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]7891 -C "x509_verify_cert.*4b00" \
7892 -C "mbedtls_pk_verify.*4b00" \
7893 -C "mbedtls_ecdh_make_public.*4b00" \
7894 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]7895
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]7896# Tests of asynchronous private key support in SSL
7897
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]7898requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]7899run_test "SSL async private: sign, delay=0" \
7900 "$P_SRV \
7901 async_operations=s async_private_delay1=0 async_private_delay2=0" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]7902 "$P_CLI" \
7903 0 \
7904 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]7905 -s "Async resume (slot [0-9]): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]7906
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]7907requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]7908run_test "SSL async private: sign, delay=1" \
7909 "$P_SRV \
7910 async_operations=s async_private_delay1=1 async_private_delay2=1" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]7911 "$P_CLI" \
7912 0 \
7913 -s "Async sign callback: using key slot " \
7914 -s "Async resume (slot [0-9]): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]7915 -s "Async resume (slot [0-9]): sign done, status=0"
7916
Gilles Peskine12d0cc12018-04-26 15:06:56 +0200[diff] [blame]7917requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
7918run_test "SSL async private: sign, delay=2" \
7919 "$P_SRV \
7920 async_operations=s async_private_delay1=2 async_private_delay2=2" \
7921 "$P_CLI" \
7922 0 \
7923 -s "Async sign callback: using key slot " \
7924 -U "Async sign callback: using key slot " \
7925 -s "Async resume (slot [0-9]): call 1 more times." \
7926 -s "Async resume (slot [0-9]): call 0 more times." \
7927 -s "Async resume (slot [0-9]): sign done, status=0"
7928
Gilles Peskined3268832018-04-26 06:23:59 +0200[diff] [blame]7929# Test that the async callback correctly signs the 36-byte hash of TLS 1.0/1.1
7930# with RSA PKCS#1v1.5 as used in TLS 1.0/1.1.
7931requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskined3268832018-04-26 06:23:59 +0200[diff] [blame]7932run_test "SSL async private: sign, RSA, TLS 1.1" \
7933 "$P_SRV key_file=data_files/server2.key crt_file=data_files/server2.crt \
7934 async_operations=s async_private_delay1=0 async_private_delay2=0" \
7935 "$P_CLI force_version=tls1_1" \
7936 0 \
7937 -s "Async sign callback: using key slot " \
7938 -s "Async resume (slot [0-9]): sign done, status=0"
7939
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]7940requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine807d74a2018-04-30 10:30:49 +0200[diff] [blame]7941run_test "SSL async private: sign, SNI" \
7942 "$P_SRV debug_level=3 \
7943 async_operations=s async_private_delay1=0 async_private_delay2=0 \
7944 crt_file=data_files/server5.crt key_file=data_files/server5.key \
7945 sni=localhost,data_files/server2.crt,data_files/server2.key,-,-,-,polarssl.example,data_files/server1-nospace.crt,data_files/server1.key,-,-,-" \
7946 "$P_CLI server_name=polarssl.example" \
7947 0 \
7948 -s "Async sign callback: using key slot " \
7949 -s "Async resume (slot [0-9]): sign done, status=0" \
7950 -s "parse ServerName extension" \
7951 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
7952 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
7953
7954requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]7955run_test "SSL async private: decrypt, delay=0" \
7956 "$P_SRV \
7957 async_operations=d async_private_delay1=0 async_private_delay2=0" \
7958 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
7959 0 \
7960 -s "Async decrypt callback: using key slot " \
7961 -s "Async resume (slot [0-9]): decrypt done, status=0"
7962
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]7963requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]7964run_test "SSL async private: decrypt, delay=1" \
7965 "$P_SRV \
7966 async_operations=d async_private_delay1=1 async_private_delay2=1" \
7967 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
7968 0 \
7969 -s "Async decrypt callback: using key slot " \
7970 -s "Async resume (slot [0-9]): call 0 more times." \
7971 -s "Async resume (slot [0-9]): decrypt done, status=0"
7972
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]7973requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]7974run_test "SSL async private: decrypt RSA-PSK, delay=0" \
7975 "$P_SRV psk=abc123 \
7976 async_operations=d async_private_delay1=0 async_private_delay2=0" \
7977 "$P_CLI psk=abc123 \
7978 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256" \
7979 0 \
7980 -s "Async decrypt callback: using key slot " \
7981 -s "Async resume (slot [0-9]): decrypt done, status=0"
7982
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]7983requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]7984run_test "SSL async private: decrypt RSA-PSK, delay=1" \
7985 "$P_SRV psk=abc123 \
7986 async_operations=d async_private_delay1=1 async_private_delay2=1" \
7987 "$P_CLI psk=abc123 \
7988 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256" \
7989 0 \
7990 -s "Async decrypt callback: using key slot " \
7991 -s "Async resume (slot [0-9]): call 0 more times." \
7992 -s "Async resume (slot [0-9]): decrypt done, status=0"
7993
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]7994requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]7995run_test "SSL async private: sign callback not present" \
7996 "$P_SRV \
7997 async_operations=d async_private_delay1=1 async_private_delay2=1" \
7998 "$P_CLI; [ \$? -eq 1 ] &&
7999 $P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8000 0 \
8001 -S "Async sign callback" \
8002 -s "! mbedtls_ssl_handshake returned" \
8003 -s "The own private key or pre-shared key is not set, but needed" \
8004 -s "Async resume (slot [0-9]): decrypt done, status=0" \
8005 -s "Successful connection"
8006
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8007requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8008run_test "SSL async private: decrypt callback not present" \
8009 "$P_SRV debug_level=1 \
8010 async_operations=s async_private_delay1=1 async_private_delay2=1" \
8011 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA;
8012 [ \$? -eq 1 ] && $P_CLI" \
8013 0 \
8014 -S "Async decrypt callback" \
8015 -s "! mbedtls_ssl_handshake returned" \
8016 -s "got no RSA private key" \
8017 -s "Async resume (slot [0-9]): sign done, status=0" \
8018 -s "Successful connection"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8019
8020# key1: ECDSA, key2: RSA; use key1 from slot 0
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8021requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8022run_test "SSL async private: slot 0 used with key1" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8023 "$P_SRV \
8024 async_operations=s async_private_delay1=1 \
8025 key_file=data_files/server5.key crt_file=data_files/server5.crt \
8026 key_file2=data_files/server2.key crt_file2=data_files/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8027 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
8028 0 \
8029 -s "Async sign callback: using key slot 0," \
8030 -s "Async resume (slot 0): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8031 -s "Async resume (slot 0): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8032
8033# key1: ECDSA, key2: RSA; use key2 from slot 0
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8034requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8035run_test "SSL async private: slot 0 used with key2" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8036 "$P_SRV \
8037 async_operations=s async_private_delay2=1 \
8038 key_file=data_files/server5.key crt_file=data_files/server5.crt \
8039 key_file2=data_files/server2.key crt_file2=data_files/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8040 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
8041 0 \
8042 -s "Async sign callback: using key slot 0," \
8043 -s "Async resume (slot 0): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8044 -s "Async resume (slot 0): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8045
8046# key1: ECDSA, key2: RSA; use key2 from slot 1
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8047requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinead28bf02018-04-26 00:19:16 +0200[diff] [blame]8048run_test "SSL async private: slot 1 used with key2" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8049 "$P_SRV \
Gilles Peskine168dae82018-04-25 23:35:42 +0200[diff] [blame]8050 async_operations=s async_private_delay1=1 async_private_delay2=1 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8051 key_file=data_files/server5.key crt_file=data_files/server5.crt \
8052 key_file2=data_files/server2.key crt_file2=data_files/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8053 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
8054 0 \
8055 -s "Async sign callback: using key slot 1," \
8056 -s "Async resume (slot 1): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8057 -s "Async resume (slot 1): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8058
8059# key1: ECDSA, key2: RSA; use key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8060requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8061run_test "SSL async private: fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8062 "$P_SRV \
8063 async_operations=s async_private_delay1=1 \
8064 key_file=data_files/server5.key crt_file=data_files/server5.crt \
8065 key_file2=data_files/server2.key crt_file2=data_files/server2.crt " \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8066 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
8067 0 \
8068 -s "Async sign callback: no key matches this certificate."
8069
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8070requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]8071run_test "SSL async private: sign, error in start" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8072 "$P_SRV \
8073 async_operations=s async_private_delay1=1 async_private_delay2=1 \
8074 async_private_error=1" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8075 "$P_CLI" \
8076 1 \
8077 -s "Async sign callback: injected error" \
8078 -S "Async resume" \
Gilles Peskine37289cd2018-04-27 11:50:14 +0200[diff] [blame]8079 -S "Async cancel" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8080 -s "! mbedtls_ssl_handshake returned"
8081
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8082requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]8083run_test "SSL async private: sign, cancel after start" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8084 "$P_SRV \
8085 async_operations=s async_private_delay1=1 async_private_delay2=1 \
8086 async_private_error=2" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8087 "$P_CLI" \
8088 1 \
8089 -s "Async sign callback: using key slot " \
8090 -S "Async resume" \
8091 -s "Async cancel"
8092
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8093requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]8094run_test "SSL async private: sign, error in resume" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8095 "$P_SRV \
8096 async_operations=s async_private_delay1=1 async_private_delay2=1 \
8097 async_private_error=3" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8098 "$P_CLI" \
8099 1 \
8100 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8101 -s "Async resume callback: sign done but injected error" \
Gilles Peskine37289cd2018-04-27 11:50:14 +0200[diff] [blame]8102 -S "Async cancel" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8103 -s "! mbedtls_ssl_handshake returned"
8104
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8105requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]8106run_test "SSL async private: decrypt, error in start" \
8107 "$P_SRV \
8108 async_operations=d async_private_delay1=1 async_private_delay2=1 \
8109 async_private_error=1" \
8110 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8111 1 \
8112 -s "Async decrypt callback: injected error" \
8113 -S "Async resume" \
8114 -S "Async cancel" \
8115 -s "! mbedtls_ssl_handshake returned"
8116
8117requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
8118run_test "SSL async private: decrypt, cancel after start" \
8119 "$P_SRV \
8120 async_operations=d async_private_delay1=1 async_private_delay2=1 \
8121 async_private_error=2" \
8122 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8123 1 \
8124 -s "Async decrypt callback: using key slot " \
8125 -S "Async resume" \
8126 -s "Async cancel"
8127
8128requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
8129run_test "SSL async private: decrypt, error in resume" \
8130 "$P_SRV \
8131 async_operations=d async_private_delay1=1 async_private_delay2=1 \
8132 async_private_error=3" \
8133 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8134 1 \
8135 -s "Async decrypt callback: using key slot " \
8136 -s "Async resume callback: decrypt done but injected error" \
8137 -S "Async cancel" \
8138 -s "! mbedtls_ssl_handshake returned"
8139
8140requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]8141run_test "SSL async private: cancel after start then operate correctly" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8142 "$P_SRV \
8143 async_operations=s async_private_delay1=1 async_private_delay2=1 \
8144 async_private_error=-2" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]8145 "$P_CLI; [ \$? -eq 1 ] && $P_CLI" \
8146 0 \
8147 -s "Async cancel" \
8148 -s "! mbedtls_ssl_handshake returned" \
8149 -s "Async resume" \
8150 -s "Successful connection"
8151
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8152requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]8153run_test "SSL async private: error in resume then operate correctly" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8154 "$P_SRV \
8155 async_operations=s async_private_delay1=1 async_private_delay2=1 \
8156 async_private_error=-3" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]8157 "$P_CLI; [ \$? -eq 1 ] && $P_CLI" \
8158 0 \
8159 -s "! mbedtls_ssl_handshake returned" \
8160 -s "Async resume" \
8161 -s "Successful connection"
8162
8163# key1: ECDSA, key2: RSA; use key1 through async, then key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8164requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]8165run_test "SSL async private: cancel after start then fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8166 "$P_SRV \
8167 async_operations=s async_private_delay1=1 async_private_error=-2 \
8168 key_file=data_files/server5.key crt_file=data_files/server5.crt \
8169 key_file2=data_files/server2.key crt_file2=data_files/server2.crt" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]8170 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256;
8171 [ \$? -eq 1 ] &&
8172 $P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
8173 0 \
Gilles Peskinededa75a2018-04-30 10:02:45 +0200[diff] [blame]8174 -s "Async sign callback: using key slot 0" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]8175 -S "Async resume" \
8176 -s "Async cancel" \
8177 -s "! mbedtls_ssl_handshake returned" \
8178 -s "Async sign callback: no key matches this certificate." \
8179 -s "Successful connection"
8180
8181# key1: ECDSA, key2: RSA; use key1 through async, then key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8182requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]8183run_test "SSL async private: sign, error in resume then fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8184 "$P_SRV \
8185 async_operations=s async_private_delay1=1 async_private_error=-3 \
8186 key_file=data_files/server5.key crt_file=data_files/server5.crt \
8187 key_file2=data_files/server2.key crt_file2=data_files/server2.crt" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]8188 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256;
8189 [ \$? -eq 1 ] &&
8190 $P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
8191 0 \
8192 -s "Async resume" \
8193 -s "! mbedtls_ssl_handshake returned" \
8194 -s "Async sign callback: no key matches this certificate." \
8195 -s "Successful connection"
8196
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8197requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8198requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]8199run_test "SSL async private: renegotiation: client-initiated, sign" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8200 "$P_SRV \
8201 async_operations=s async_private_delay1=1 async_private_delay2=1 \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8202 exchanges=2 renegotiation=1" \
8203 "$P_CLI exchanges=2 renegotiation=1 renegotiate=1" \
8204 0 \
8205 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8206 -s "Async resume (slot [0-9]): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8207
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8208requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8209requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]8210run_test "SSL async private: renegotiation: server-initiated, sign" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8211 "$P_SRV \
8212 async_operations=s async_private_delay1=1 async_private_delay2=1 \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8213 exchanges=2 renegotiation=1 renegotiate=1" \
8214 "$P_CLI exchanges=2 renegotiation=1" \
8215 0 \
8216 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8217 -s "Async resume (slot [0-9]): sign done, status=0"
8218
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8219requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8220requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]8221run_test "SSL async private: renegotiation: client-initiated, decrypt" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8222 "$P_SRV \
8223 async_operations=d async_private_delay1=1 async_private_delay2=1 \
8224 exchanges=2 renegotiation=1" \
8225 "$P_CLI exchanges=2 renegotiation=1 renegotiate=1 \
8226 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8227 0 \
8228 -s "Async decrypt callback: using key slot " \
8229 -s "Async resume (slot [0-9]): decrypt done, status=0"
8230
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]8231requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8232requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]8233run_test "SSL async private: renegotiation: server-initiated, decrypt" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]8234 "$P_SRV \
8235 async_operations=d async_private_delay1=1 async_private_delay2=1 \
8236 exchanges=2 renegotiation=1 renegotiate=1" \
8237 "$P_CLI exchanges=2 renegotiation=1 \
8238 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8239 0 \
8240 -s "Async decrypt callback: using key slot " \
8241 -s "Async resume (slot [0-9]): decrypt done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]8242
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]8243# Tests for ECC extensions (rfc 4492)
8244
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]8245requires_config_enabled MBEDTLS_AES_C
8246requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
8247requires_config_enabled MBEDTLS_SHA256_C
8248requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]8249run_test "Force a non ECC ciphersuite in the client side" \
8250 "$P_SRV debug_level=3" \
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]8251 "$P_CLI debug_level=3 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA256" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]8252 0 \
8253 -C "client hello, adding supported_elliptic_curves extension" \
8254 -C "client hello, adding supported_point_formats extension" \
8255 -S "found supported elliptic curves extension" \
8256 -S "found supported point formats extension"
8257
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]8258requires_config_enabled MBEDTLS_AES_C
8259requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
8260requires_config_enabled MBEDTLS_SHA256_C
8261requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]8262run_test "Force a non ECC ciphersuite in the server side" \
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]8263 "$P_SRV debug_level=3 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA256" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]8264 "$P_CLI debug_level=3" \
8265 0 \
8266 -C "found supported_point_formats extension" \
8267 -S "server hello, supported_point_formats extension"
8268
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]8269requires_config_enabled MBEDTLS_AES_C
8270requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
8271requires_config_enabled MBEDTLS_SHA256_C
8272requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]8273run_test "Force an ECC ciphersuite in the client side" \
8274 "$P_SRV debug_level=3" \
8275 "$P_CLI debug_level=3 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
8276 0 \
8277 -c "client hello, adding supported_elliptic_curves extension" \
8278 -c "client hello, adding supported_point_formats extension" \
8279 -s "found supported elliptic curves extension" \
8280 -s "found supported point formats extension"
8281
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]8282requires_config_enabled MBEDTLS_AES_C
8283requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
8284requires_config_enabled MBEDTLS_SHA256_C
8285requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]8286run_test "Force an ECC ciphersuite in the server side" \
8287 "$P_SRV debug_level=3 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
8288 "$P_CLI debug_level=3" \
8289 0 \
8290 -c "found supported_point_formats extension" \
8291 -s "server hello, supported_point_formats extension"
8292
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]8293# Tests for DTLS HelloVerifyRequest
8294
8295run_test "DTLS cookie: enabled" \
8296 "$P_SRV dtls=1 debug_level=2" \
8297 "$P_CLI dtls=1 debug_level=2" \
8298 0 \
8299 -s "cookie verification failed" \
8300 -s "cookie verification passed" \
8301 -S "cookie verification skipped" \
8302 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]8303 -s "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]8304 -S "SSL - The requested feature is not available"
8305
8306run_test "DTLS cookie: disabled" \
8307 "$P_SRV dtls=1 debug_level=2 cookies=0" \
8308 "$P_CLI dtls=1 debug_level=2" \
8309 0 \
8310 -S "cookie verification failed" \
8311 -S "cookie verification passed" \
8312 -s "cookie verification skipped" \
8313 -C "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]8314 -S "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]8315 -S "SSL - The requested feature is not available"
8316
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]8317run_test "DTLS cookie: default (failing)" \
8318 "$P_SRV dtls=1 debug_level=2 cookies=-1" \
8319 "$P_CLI dtls=1 debug_level=2 hs_timeout=100-400" \
8320 1 \
8321 -s "cookie verification failed" \
8322 -S "cookie verification passed" \
8323 -S "cookie verification skipped" \
8324 -C "received hello verify request" \
8325 -S "hello verification requested" \
8326 -s "SSL - The requested feature is not available"
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]8327
8328requires_ipv6
8329run_test "DTLS cookie: enabled, IPv6" \
8330 "$P_SRV dtls=1 debug_level=2 server_addr=::1" \
8331 "$P_CLI dtls=1 debug_level=2 server_addr=::1" \
8332 0 \
8333 -s "cookie verification failed" \
8334 -s "cookie verification passed" \
8335 -S "cookie verification skipped" \
8336 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]8337 -s "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]8338 -S "SSL - The requested feature is not available"
8339
Manuel Pégourié-Gonnard579950c2014-09-29 17:47:33 +0200[diff] [blame]8340run_test "DTLS cookie: enabled, nbio" \
8341 "$P_SRV dtls=1 nbio=2 debug_level=2" \
8342 "$P_CLI dtls=1 nbio=2 debug_level=2" \
8343 0 \
8344 -s "cookie verification failed" \
8345 -s "cookie verification passed" \
8346 -S "cookie verification skipped" \
8347 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]8348 -s "hello verification requested" \
Manuel Pégourié-Gonnard579950c2014-09-29 17:47:33 +0200[diff] [blame]8349 -S "SSL - The requested feature is not available"
8350
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]8351# Tests for client reconnecting from the same port with DTLS
8352
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]8353not_with_valgrind # spurious resend
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]8354run_test "DTLS client reconnect from same port: reference" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]8355 "$P_SRV dtls=1 exchanges=2 read_timeout=20000 hs_timeout=10000-20000" \
8356 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=10000-20000" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]8357 0 \
8358 -C "resend" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]8359 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]8360 -S "Client initiated reconnection from same port"
8361
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]8362not_with_valgrind # spurious resend
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]8363run_test "DTLS client reconnect from same port: reconnect" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]8364 "$P_SRV dtls=1 exchanges=2 read_timeout=20000 hs_timeout=10000-20000" \
8365 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=10000-20000 reconnect_hard=1" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]8366 0 \
8367 -C "resend" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]8368 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]8369 -s "Client initiated reconnection from same port"
8370
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]8371not_with_valgrind # server/client too slow to respond in time (next test has higher timeouts)
8372run_test "DTLS client reconnect from same port: reconnect, nbio, no valgrind" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]8373 "$P_SRV dtls=1 exchanges=2 read_timeout=1000 nbio=2" \
8374 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=500-1000 reconnect_hard=1" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]8375 0 \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]8376 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]8377 -s "Client initiated reconnection from same port"
8378
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]8379only_with_valgrind # Only with valgrind, do previous test but with higher read_timeout and hs_timeout
8380run_test "DTLS client reconnect from same port: reconnect, nbio, valgrind" \
8381 "$P_SRV dtls=1 exchanges=2 read_timeout=2000 nbio=2 hs_timeout=1500-6000" \
8382 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=1500-3000 reconnect_hard=1" \
8383 0 \
8384 -S "The operation timed out" \
8385 -s "Client initiated reconnection from same port"
8386
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]8387run_test "DTLS client reconnect from same port: no cookies" \
8388 "$P_SRV dtls=1 exchanges=2 read_timeout=1000 cookies=0" \
Manuel Pégourié-Gonnard6ad23b92015-09-15 12:57:46 +0200[diff] [blame]8389 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=500-8000 reconnect_hard=1" \
8390 0 \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]8391 -s "The operation timed out" \
8392 -S "Client initiated reconnection from same port"
8393
Manuel Pégourié-Gonnardbaad2de2020-03-13 11:11:02 +0100[diff] [blame]8394run_test "DTLS client reconnect from same port: attacker-injected" \
8395 -p "$P_PXY inject_clihlo=1" \
8396 "$P_SRV dtls=1 exchanges=2 debug_level=1" \
8397 "$P_CLI dtls=1 exchanges=2" \
8398 0 \
8399 -s "possible client reconnect from the same port" \
8400 -S "Client initiated reconnection from same port"
8401
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]8402# Tests for various cases of client authentication with DTLS
8403# (focused on handshake flows and message parsing)
8404
8405run_test "DTLS client auth: required" \
8406 "$P_SRV dtls=1 auth_mode=required" \
8407 "$P_CLI dtls=1" \
8408 0 \
8409 -s "Verifying peer X.509 certificate... ok"
8410
8411run_test "DTLS client auth: optional, client has no cert" \
8412 "$P_SRV dtls=1 auth_mode=optional" \
8413 "$P_CLI dtls=1 crt_file=none key_file=none" \
8414 0 \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]8415 -s "! Certificate was missing"
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]8416
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]8417run_test "DTLS client auth: none, client has no cert" \
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]8418 "$P_SRV dtls=1 auth_mode=none" \
8419 "$P_CLI dtls=1 crt_file=none key_file=none debug_level=2" \
8420 0 \
8421 -c "skip write certificate$" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]8422 -s "! Certificate verification was skipped"
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]8423
Manuel Pégourié-Gonnard0a885742015-08-04 12:08:35 +0200[diff] [blame]8424run_test "DTLS wrong PSK: badmac alert" \
8425 "$P_SRV dtls=1 psk=abc123 force_ciphersuite=TLS-PSK-WITH-AES-128-GCM-SHA256" \
8426 "$P_CLI dtls=1 psk=abc124" \
8427 1 \
8428 -s "SSL - Verification of the message MAC failed" \
8429 -c "SSL - A fatal alert message was received from our peer"
8430
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]8431# Tests for receiving fragmented handshake messages with DTLS
8432
8433requires_gnutls
8434run_test "DTLS reassembly: no fragmentation (gnutls server)" \
8435 "$G_SRV -u --mtu 2048 -a" \
8436 "$P_CLI dtls=1 debug_level=2" \
8437 0 \
8438 -C "found fragmented DTLS handshake message" \
8439 -C "error"
8440
8441requires_gnutls
8442run_test "DTLS reassembly: some fragmentation (gnutls server)" \
8443 "$G_SRV -u --mtu 512" \
8444 "$P_CLI dtls=1 debug_level=2" \
8445 0 \
8446 -c "found fragmented DTLS handshake message" \
8447 -C "error"
8448
8449requires_gnutls
8450run_test "DTLS reassembly: more fragmentation (gnutls server)" \
8451 "$G_SRV -u --mtu 128" \
8452 "$P_CLI dtls=1 debug_level=2" \
8453 0 \
8454 -c "found fragmented DTLS handshake message" \
8455 -C "error"
8456
8457requires_gnutls
8458run_test "DTLS reassembly: more fragmentation, nbio (gnutls server)" \
8459 "$G_SRV -u --mtu 128" \
8460 "$P_CLI dtls=1 nbio=2 debug_level=2" \
8461 0 \
8462 -c "found fragmented DTLS handshake message" \
8463 -C "error"
8464
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]8465requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]8466requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]8467run_test "DTLS reassembly: fragmentation, renego (gnutls server)" \
8468 "$G_SRV -u --mtu 256" \
8469 "$P_CLI debug_level=3 dtls=1 renegotiation=1 renegotiate=1" \
8470 0 \
8471 -c "found fragmented DTLS handshake message" \
8472 -c "client hello, adding renegotiation extension" \
8473 -c "found renegotiation extension" \
8474 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]8475 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]8476 -C "error" \
8477 -s "Extra-header:"
8478
8479requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]8480requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]8481run_test "DTLS reassembly: fragmentation, nbio, renego (gnutls server)" \
8482 "$G_SRV -u --mtu 256" \
8483 "$P_CLI debug_level=3 nbio=2 dtls=1 renegotiation=1 renegotiate=1" \
8484 0 \
8485 -c "found fragmented DTLS handshake message" \
8486 -c "client hello, adding renegotiation extension" \
8487 -c "found renegotiation extension" \
8488 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]8489 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]8490 -C "error" \
8491 -s "Extra-header:"
8492
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]8493run_test "DTLS reassembly: no fragmentation (openssl server)" \
8494 "$O_SRV -dtls1 -mtu 2048" \
8495 "$P_CLI dtls=1 debug_level=2" \
8496 0 \
8497 -C "found fragmented DTLS handshake message" \
8498 -C "error"
8499
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]8500run_test "DTLS reassembly: some fragmentation (openssl server)" \
8501 "$O_SRV -dtls1 -mtu 768" \
Manuel Pégourié-Gonnard64dffc52014-09-02 13:39:16 +0200[diff] [blame]8502 "$P_CLI dtls=1 debug_level=2" \
8503 0 \
8504 -c "found fragmented DTLS handshake message" \
8505 -C "error"
8506
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]8507run_test "DTLS reassembly: more fragmentation (openssl server)" \
Manuel Pégourié-Gonnard64dffc52014-09-02 13:39:16 +0200[diff] [blame]8508 "$O_SRV -dtls1 -mtu 256" \
8509 "$P_CLI dtls=1 debug_level=2" \
8510 0 \
8511 -c "found fragmented DTLS handshake message" \
8512 -C "error"
8513
8514run_test "DTLS reassembly: fragmentation, nbio (openssl server)" \
8515 "$O_SRV -dtls1 -mtu 256" \
8516 "$P_CLI dtls=1 nbio=2 debug_level=2" \
8517 0 \
8518 -c "found fragmented DTLS handshake message" \
8519 -C "error"
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]8520
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8521# Tests for sending fragmented handshake messages with DTLS
8522#
8523# Use client auth when we need the client to send large messages,
8524# and use large cert chains on both sides too (the long chains we have all use
8525# both RSA and ECDSA, but ideally we should have long chains with either).
8526# Sizes reached (UDP payload):
8527# - 2037B for server certificate
8528# - 1542B for client certificate
8529# - 1013B for newsessionticket
8530# - all others below 512B
8531# All those tests assume MAX_CONTENT_LEN is at least 2048
8532
8533requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8534requires_config_enabled MBEDTLS_RSA_C
8535requires_config_enabled MBEDTLS_ECDSA_C
8536requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8537requires_max_content_len 4096
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8538run_test "DTLS fragmenting: none (for reference)" \
8539 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8540 crt_file=data_files/server7_int-ca.crt \
8541 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8542 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]8543 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8544 "$P_CLI dtls=1 debug_level=2 \
8545 crt_file=data_files/server8_int-ca2.crt \
8546 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8547 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]8548 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8549 0 \
8550 -S "found fragmented DTLS handshake message" \
8551 -C "found fragmented DTLS handshake message" \
8552 -C "error"
8553
8554requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8555requires_config_enabled MBEDTLS_RSA_C
8556requires_config_enabled MBEDTLS_ECDSA_C
8557requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8558requires_max_content_len 2048
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8559run_test "DTLS fragmenting: server only (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8560 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8561 crt_file=data_files/server7_int-ca.crt \
8562 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8563 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8564 max_frag_len=1024" \
8565 "$P_CLI dtls=1 debug_level=2 \
8566 crt_file=data_files/server8_int-ca2.crt \
8567 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8568 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8569 max_frag_len=2048" \
8570 0 \
8571 -S "found fragmented DTLS handshake message" \
8572 -c "found fragmented DTLS handshake message" \
8573 -C "error"
8574
Hanno Becker69ca0ad2018-08-24 12:11:35 +0100[diff] [blame]8575# With the MFL extension, the server has no way of forcing
8576# the client to not exceed a certain MTU; hence, the following
8577# test can't be replicated with an MTU proxy such as the one
8578# `client-initiated, server only (max_frag_len)` below.
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8579requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8580requires_config_enabled MBEDTLS_RSA_C
8581requires_config_enabled MBEDTLS_ECDSA_C
8582requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8583requires_max_content_len 4096
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8584run_test "DTLS fragmenting: server only (more) (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8585 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8586 crt_file=data_files/server7_int-ca.crt \
8587 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8588 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8589 max_frag_len=512" \
8590 "$P_CLI dtls=1 debug_level=2 \
8591 crt_file=data_files/server8_int-ca2.crt \
8592 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8593 hs_timeout=2500-60000 \
Hanno Becker69ca0ad2018-08-24 12:11:35 +0100[diff] [blame]8594 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8595 0 \
8596 -S "found fragmented DTLS handshake message" \
8597 -c "found fragmented DTLS handshake message" \
8598 -C "error"
8599
8600requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8601requires_config_enabled MBEDTLS_RSA_C
8602requires_config_enabled MBEDTLS_ECDSA_C
8603requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8604requires_max_content_len 2048
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8605run_test "DTLS fragmenting: client-initiated, server only (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8606 "$P_SRV dtls=1 debug_level=2 auth_mode=none \
8607 crt_file=data_files/server7_int-ca.crt \
8608 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8609 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8610 max_frag_len=2048" \
8611 "$P_CLI dtls=1 debug_level=2 \
8612 crt_file=data_files/server8_int-ca2.crt \
8613 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8614 hs_timeout=2500-60000 \
8615 max_frag_len=1024" \
8616 0 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8617 -S "found fragmented DTLS handshake message" \
8618 -c "found fragmented DTLS handshake message" \
8619 -C "error"
8620
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]8621# While not required by the standard defining the MFL extension
8622# (according to which it only applies to records, not to datagrams),
8623# Mbed TLS will never send datagrams larger than MFL + { Max record expansion },
8624# as otherwise there wouldn't be any means to communicate MTU restrictions
8625# to the peer.
8626# The next test checks that no datagrams significantly larger than the
8627# negotiated MFL are sent.
8628requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8629requires_config_enabled MBEDTLS_RSA_C
8630requires_config_enabled MBEDTLS_ECDSA_C
8631requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8632requires_max_content_len 2048
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]8633run_test "DTLS fragmenting: client-initiated, server only (max_frag_len), proxy MTU" \
Andrzej Kurek0fc9cf42018-10-09 03:09:41 -0400[diff] [blame]8634 -p "$P_PXY mtu=1110" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]8635 "$P_SRV dtls=1 debug_level=2 auth_mode=none \
8636 crt_file=data_files/server7_int-ca.crt \
8637 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8638 hs_timeout=2500-60000 \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]8639 max_frag_len=2048" \
8640 "$P_CLI dtls=1 debug_level=2 \
8641 crt_file=data_files/server8_int-ca2.crt \
8642 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8643 hs_timeout=2500-60000 \
8644 max_frag_len=1024" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]8645 0 \
8646 -S "found fragmented DTLS handshake message" \
8647 -c "found fragmented DTLS handshake message" \
8648 -C "error"
8649
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8650requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8651requires_config_enabled MBEDTLS_RSA_C
8652requires_config_enabled MBEDTLS_ECDSA_C
8653requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8654requires_max_content_len 2048
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8655run_test "DTLS fragmenting: client-initiated, both (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8656 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8657 crt_file=data_files/server7_int-ca.crt \
8658 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8659 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8660 max_frag_len=2048" \
8661 "$P_CLI dtls=1 debug_level=2 \
8662 crt_file=data_files/server8_int-ca2.crt \
8663 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8664 hs_timeout=2500-60000 \
8665 max_frag_len=1024" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]8666 0 \
8667 -s "found fragmented DTLS handshake message" \
8668 -c "found fragmented DTLS handshake message" \
8669 -C "error"
8670
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]8671# While not required by the standard defining the MFL extension
8672# (according to which it only applies to records, not to datagrams),
8673# Mbed TLS will never send datagrams larger than MFL + { Max record expansion },
8674# as otherwise there wouldn't be any means to communicate MTU restrictions
8675# to the peer.
8676# The next test checks that no datagrams significantly larger than the
8677# negotiated MFL are sent.
8678requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8679requires_config_enabled MBEDTLS_RSA_C
8680requires_config_enabled MBEDTLS_ECDSA_C
8681requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8682requires_max_content_len 2048
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]8683run_test "DTLS fragmenting: client-initiated, both (max_frag_len), proxy MTU" \
Andrzej Kurek0fc9cf42018-10-09 03:09:41 -0400[diff] [blame]8684 -p "$P_PXY mtu=1110" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]8685 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8686 crt_file=data_files/server7_int-ca.crt \
8687 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8688 hs_timeout=2500-60000 \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]8689 max_frag_len=2048" \
8690 "$P_CLI dtls=1 debug_level=2 \
8691 crt_file=data_files/server8_int-ca2.crt \
8692 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8693 hs_timeout=2500-60000 \
8694 max_frag_len=1024" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]8695 0 \
8696 -s "found fragmented DTLS handshake message" \
8697 -c "found fragmented DTLS handshake message" \
8698 -C "error"
8699
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8700requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8701requires_config_enabled MBEDTLS_RSA_C
8702requires_config_enabled MBEDTLS_ECDSA_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8703requires_max_content_len 4096
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8704run_test "DTLS fragmenting: none (for reference) (MTU)" \
8705 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8706 crt_file=data_files/server7_int-ca.crt \
8707 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8708 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]8709 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8710 "$P_CLI dtls=1 debug_level=2 \
8711 crt_file=data_files/server8_int-ca2.crt \
8712 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8713 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]8714 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8715 0 \
8716 -S "found fragmented DTLS handshake message" \
8717 -C "found fragmented DTLS handshake message" \
8718 -C "error"
8719
8720requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8721requires_config_enabled MBEDTLS_RSA_C
8722requires_config_enabled MBEDTLS_ECDSA_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8723requires_max_content_len 4096
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8724run_test "DTLS fragmenting: client (MTU)" \
8725 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8726 crt_file=data_files/server7_int-ca.crt \
8727 key_file=data_files/server7.key \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]8728 hs_timeout=3500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]8729 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8730 "$P_CLI dtls=1 debug_level=2 \
8731 crt_file=data_files/server8_int-ca2.crt \
8732 key_file=data_files/server8.key \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]8733 hs_timeout=3500-60000 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8734 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8735 0 \
8736 -s "found fragmented DTLS handshake message" \
8737 -C "found fragmented DTLS handshake message" \
8738 -C "error"
8739
8740requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8741requires_config_enabled MBEDTLS_RSA_C
8742requires_config_enabled MBEDTLS_ECDSA_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8743requires_max_content_len 2048
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8744run_test "DTLS fragmenting: server (MTU)" \
8745 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8746 crt_file=data_files/server7_int-ca.crt \
8747 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8748 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8749 mtu=512" \
8750 "$P_CLI dtls=1 debug_level=2 \
8751 crt_file=data_files/server8_int-ca2.crt \
8752 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8753 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8754 mtu=2048" \
8755 0 \
8756 -S "found fragmented DTLS handshake message" \
8757 -c "found fragmented DTLS handshake message" \
8758 -C "error"
8759
8760requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8761requires_config_enabled MBEDTLS_RSA_C
8762requires_config_enabled MBEDTLS_ECDSA_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8763requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8764run_test "DTLS fragmenting: both (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8765 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8766 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8767 crt_file=data_files/server7_int-ca.crt \
8768 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8769 hs_timeout=2500-60000 \
Andrzej Kurek95805282018-10-11 08:55:37 -0400[diff] [blame]8770 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8771 "$P_CLI dtls=1 debug_level=2 \
8772 crt_file=data_files/server8_int-ca2.crt \
8773 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8774 hs_timeout=2500-60000 \
8775 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]8776 0 \
8777 -s "found fragmented DTLS handshake message" \
8778 -c "found fragmented DTLS handshake message" \
8779 -C "error"
8780
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]8781# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8782requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8783requires_config_enabled MBEDTLS_RSA_C
8784requires_config_enabled MBEDTLS_ECDSA_C
8785requires_config_enabled MBEDTLS_SHA256_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]8786requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8787requires_config_enabled MBEDTLS_AES_C
8788requires_config_enabled MBEDTLS_GCM_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8789requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8790run_test "DTLS fragmenting: both (MTU=512)" \
Hanno Becker8d832182018-03-15 10:14:19 +0000[diff] [blame]8791 -p "$P_PXY mtu=512" \
Hanno Becker72a4f032017-11-15 16:39:20 +0000[diff] [blame]8792 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8793 crt_file=data_files/server7_int-ca.crt \
8794 key_file=data_files/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8795 hs_timeout=2500-60000 \
Hanno Becker72a4f032017-11-15 16:39:20 +0000[diff] [blame]8796 mtu=512" \
8797 "$P_CLI dtls=1 debug_level=2 \
8798 crt_file=data_files/server8_int-ca2.crt \
8799 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8800 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
8801 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]8802 mtu=512" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]8803 0 \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]8804 -s "found fragmented DTLS handshake message" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]8805 -c "found fragmented DTLS handshake message" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]8806 -C "error"
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]8807
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8808# Test for automatic MTU reduction on repeated resend.
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]8809# Forcing ciphersuite for this test to fit the MTU of 508 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8810# The ratio of max/min timeout should ideally equal 4 to accept two
8811# retransmissions, but in some cases (like both the server and client using
8812# fragmentation and auto-reduction) an extra retransmission might occur,
8813# hence the ratio of 8.
Hanno Becker37029eb2018-08-29 17:01:40 +0100[diff] [blame]8814not_with_valgrind
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]8815requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8816requires_config_enabled MBEDTLS_RSA_C
8817requires_config_enabled MBEDTLS_ECDSA_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]8818requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8819requires_config_enabled MBEDTLS_AES_C
8820requires_config_enabled MBEDTLS_GCM_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8821requires_max_content_len 2048
Gilles Peskine0d8b86a2019-09-20 18:03:11 +0200[diff] [blame]8822run_test "DTLS fragmenting: proxy MTU: auto-reduction (not valgrind)" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]8823 -p "$P_PXY mtu=508" \
8824 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8825 crt_file=data_files/server7_int-ca.crt \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8826 key_file=data_files/server7.key \
8827 hs_timeout=400-3200" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]8828 "$P_CLI dtls=1 debug_level=2 \
8829 crt_file=data_files/server8_int-ca2.crt \
8830 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8831 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
8832 hs_timeout=400-3200" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]8833 0 \
8834 -s "found fragmented DTLS handshake message" \
8835 -c "found fragmented DTLS handshake message" \
8836 -C "error"
8837
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]8838# Forcing ciphersuite for this test to fit the MTU of 508 with full config.
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]8839only_with_valgrind
8840requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8841requires_config_enabled MBEDTLS_RSA_C
8842requires_config_enabled MBEDTLS_ECDSA_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]8843requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8844requires_config_enabled MBEDTLS_AES_C
8845requires_config_enabled MBEDTLS_GCM_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8846requires_max_content_len 2048
Gilles Peskine0d8b86a2019-09-20 18:03:11 +0200[diff] [blame]8847run_test "DTLS fragmenting: proxy MTU: auto-reduction (with valgrind)" \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]8848 -p "$P_PXY mtu=508" \
8849 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8850 crt_file=data_files/server7_int-ca.crt \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8851 key_file=data_files/server7.key \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]8852 hs_timeout=250-10000" \
8853 "$P_CLI dtls=1 debug_level=2 \
8854 crt_file=data_files/server8_int-ca2.crt \
8855 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8856 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]8857 hs_timeout=250-10000" \
8858 0 \
8859 -s "found fragmented DTLS handshake message" \
8860 -c "found fragmented DTLS handshake message" \
8861 -C "error"
8862
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]8863# the proxy shouldn't drop or mess up anything, so we shouldn't need to resend
Manuel Pégourié-Gonnard3d183ce2018-08-22 09:56:22 +0200[diff] [blame]8864# OTOH the client might resend if the server is to slow to reset after sending
8865# a HelloVerifyRequest, so only check for no retransmission server-side
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]8866not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]8867requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8868requires_config_enabled MBEDTLS_RSA_C
8869requires_config_enabled MBEDTLS_ECDSA_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8870requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8871run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8872 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]8873 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8874 crt_file=data_files/server7_int-ca.crt \
8875 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8876 hs_timeout=10000-60000 \
8877 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]8878 "$P_CLI dtls=1 debug_level=2 \
8879 crt_file=data_files/server8_int-ca2.crt \
8880 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8881 hs_timeout=10000-60000 \
8882 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]8883 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]8884 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]8885 -s "found fragmented DTLS handshake message" \
8886 -c "found fragmented DTLS handshake message" \
8887 -C "error"
8888
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]8889# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8890# the proxy shouldn't drop or mess up anything, so we shouldn't need to resend
8891# OTOH the client might resend if the server is to slow to reset after sending
8892# a HelloVerifyRequest, so only check for no retransmission server-side
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]8893not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]8894requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8895requires_config_enabled MBEDTLS_RSA_C
8896requires_config_enabled MBEDTLS_ECDSA_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]8897requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8898requires_config_enabled MBEDTLS_AES_C
8899requires_config_enabled MBEDTLS_GCM_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8900requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8901run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=512)" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]8902 -p "$P_PXY mtu=512" \
8903 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8904 crt_file=data_files/server7_int-ca.crt \
8905 key_file=data_files/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8906 hs_timeout=10000-60000 \
8907 mtu=512" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]8908 "$P_CLI dtls=1 debug_level=2 \
8909 crt_file=data_files/server8_int-ca2.crt \
8910 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8911 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
8912 hs_timeout=10000-60000 \
8913 mtu=512" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]8914 0 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8915 -S "autoreduction" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]8916 -s "found fragmented DTLS handshake message" \
8917 -c "found fragmented DTLS handshake message" \
8918 -C "error"
8919
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8920not_with_valgrind # spurious autoreduction due to timeout
8921requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8922requires_config_enabled MBEDTLS_RSA_C
8923requires_config_enabled MBEDTLS_ECDSA_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8924requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8925run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8926 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]8927 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8928 crt_file=data_files/server7_int-ca.crt \
8929 key_file=data_files/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8930 hs_timeout=10000-60000 \
8931 mtu=1024 nbio=2" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]8932 "$P_CLI dtls=1 debug_level=2 \
8933 crt_file=data_files/server8_int-ca2.crt \
8934 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8935 hs_timeout=10000-60000 \
8936 mtu=1024 nbio=2" \
8937 0 \
8938 -S "autoreduction" \
8939 -s "found fragmented DTLS handshake message" \
8940 -c "found fragmented DTLS handshake message" \
8941 -C "error"
8942
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]8943# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8944not_with_valgrind # spurious autoreduction due to timeout
8945requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8946requires_config_enabled MBEDTLS_RSA_C
8947requires_config_enabled MBEDTLS_ECDSA_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]8948requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8949requires_config_enabled MBEDTLS_AES_C
8950requires_config_enabled MBEDTLS_GCM_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8951requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8952run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=512)" \
8953 -p "$P_PXY mtu=512" \
8954 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8955 crt_file=data_files/server7_int-ca.crt \
8956 key_file=data_files/server7.key \
8957 hs_timeout=10000-60000 \
8958 mtu=512 nbio=2" \
8959 "$P_CLI dtls=1 debug_level=2 \
8960 crt_file=data_files/server8_int-ca2.crt \
8961 key_file=data_files/server8.key \
8962 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
8963 hs_timeout=10000-60000 \
8964 mtu=512 nbio=2" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]8965 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]8966 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]8967 -s "found fragmented DTLS handshake message" \
8968 -c "found fragmented DTLS handshake message" \
8969 -C "error"
8970
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]8971# Forcing ciphersuite for this test to fit the MTU of 1450 with full config.
Hanno Beckerb841b4f2018-08-28 10:25:51 +0100[diff] [blame]8972# This ensures things still work after session_reset().
8973# It also exercises the "resumed handshake" flow.
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]8974# Since we don't support reading fragmented ClientHello yet,
8975# up the MTU to 1450 (larger than ClientHello with session ticket,
8976# but still smaller than client's Certificate to ensure fragmentation).
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]8977# An autoreduction on the client-side might happen if the server is
8978# slow to reset, therefore omitting '-C "autoreduction"' below.
Manuel Pégourié-Gonnard2f2d9022018-08-21 12:17:54 +0200[diff] [blame]8979# reco_delay avoids races where the client reconnects before the server has
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]8980# resumed listening, which would result in a spurious autoreduction.
8981not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]8982requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
8983requires_config_enabled MBEDTLS_RSA_C
8984requires_config_enabled MBEDTLS_ECDSA_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]8985requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]8986requires_config_enabled MBEDTLS_AES_C
8987requires_config_enabled MBEDTLS_GCM_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]8988requires_max_content_len 2048
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]8989run_test "DTLS fragmenting: proxy MTU, resumed handshake" \
8990 -p "$P_PXY mtu=1450" \
8991 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
8992 crt_file=data_files/server7_int-ca.crt \
8993 key_file=data_files/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8994 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]8995 mtu=1450" \
8996 "$P_CLI dtls=1 debug_level=2 \
8997 crt_file=data_files/server8_int-ca2.crt \
8998 key_file=data_files/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]8999 hs_timeout=10000-60000 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]9000 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]9001 mtu=1450 reconnect=1 skip_close_notify=1 reco_delay=1" \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]9002 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9003 -S "autoreduction" \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]9004 -s "found fragmented DTLS handshake message" \
9005 -c "found fragmented DTLS handshake message" \
9006 -C "error"
9007
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9008# An autoreduction on the client-side might happen if the server is
9009# slow to reset, therefore omitting '-C "autoreduction"' below.
9010not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9011requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9012requires_config_enabled MBEDTLS_RSA_C
9013requires_config_enabled MBEDTLS_ECDSA_C
9014requires_config_enabled MBEDTLS_SHA256_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]9015requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9016requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
9017requires_config_enabled MBEDTLS_CHACHAPOLY_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9018requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9019run_test "DTLS fragmenting: proxy MTU, ChachaPoly renego" \
9020 -p "$P_PXY mtu=512" \
9021 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
9022 crt_file=data_files/server7_int-ca.crt \
9023 key_file=data_files/server7.key \
9024 exchanges=2 renegotiation=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9025 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9026 mtu=512" \
9027 "$P_CLI dtls=1 debug_level=2 \
9028 crt_file=data_files/server8_int-ca2.crt \
9029 key_file=data_files/server8.key \
9030 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]9031 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9032 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9033 mtu=512" \
9034 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9035 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9036 -s "found fragmented DTLS handshake message" \
9037 -c "found fragmented DTLS handshake message" \
9038 -C "error"
9039
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9040# An autoreduction on the client-side might happen if the server is
9041# slow to reset, therefore omitting '-C "autoreduction"' below.
9042not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9043requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9044requires_config_enabled MBEDTLS_RSA_C
9045requires_config_enabled MBEDTLS_ECDSA_C
9046requires_config_enabled MBEDTLS_SHA256_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]9047requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9048requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
9049requires_config_enabled MBEDTLS_AES_C
9050requires_config_enabled MBEDTLS_GCM_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9051requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9052run_test "DTLS fragmenting: proxy MTU, AES-GCM renego" \
9053 -p "$P_PXY mtu=512" \
9054 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
9055 crt_file=data_files/server7_int-ca.crt \
9056 key_file=data_files/server7.key \
9057 exchanges=2 renegotiation=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9058 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9059 mtu=512" \
9060 "$P_CLI dtls=1 debug_level=2 \
9061 crt_file=data_files/server8_int-ca2.crt \
9062 key_file=data_files/server8.key \
9063 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]9064 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9065 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9066 mtu=512" \
9067 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9068 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9069 -s "found fragmented DTLS handshake message" \
9070 -c "found fragmented DTLS handshake message" \
9071 -C "error"
9072
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9073# An autoreduction on the client-side might happen if the server is
9074# slow to reset, therefore omitting '-C "autoreduction"' below.
9075not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9076requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9077requires_config_enabled MBEDTLS_RSA_C
9078requires_config_enabled MBEDTLS_ECDSA_C
9079requires_config_enabled MBEDTLS_SHA256_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]9080requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9081requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
9082requires_config_enabled MBEDTLS_AES_C
9083requires_config_enabled MBEDTLS_CCM_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9084requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9085run_test "DTLS fragmenting: proxy MTU, AES-CCM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9086 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9087 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
9088 crt_file=data_files/server7_int-ca.crt \
9089 key_file=data_files/server7.key \
9090 exchanges=2 renegotiation=1 \
9091 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9092 hs_timeout=10000-60000 \
9093 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9094 "$P_CLI dtls=1 debug_level=2 \
9095 crt_file=data_files/server8_int-ca2.crt \
9096 key_file=data_files/server8.key \
9097 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9098 hs_timeout=10000-60000 \
9099 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9100 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9101 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9102 -s "found fragmented DTLS handshake message" \
9103 -c "found fragmented DTLS handshake message" \
9104 -C "error"
9105
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9106# An autoreduction on the client-side might happen if the server is
9107# slow to reset, therefore omitting '-C "autoreduction"' below.
9108not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9109requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9110requires_config_enabled MBEDTLS_RSA_C
9111requires_config_enabled MBEDTLS_ECDSA_C
9112requires_config_enabled MBEDTLS_SHA256_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]9113requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9114requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
9115requires_config_enabled MBEDTLS_AES_C
9116requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
9117requires_config_enabled MBEDTLS_SSL_ENCRYPT_THEN_MAC
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9118requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9119run_test "DTLS fragmenting: proxy MTU, AES-CBC EtM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9120 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9121 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
9122 crt_file=data_files/server7_int-ca.crt \
9123 key_file=data_files/server7.key \
9124 exchanges=2 renegotiation=1 \
9125 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9126 hs_timeout=10000-60000 \
9127 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9128 "$P_CLI dtls=1 debug_level=2 \
9129 crt_file=data_files/server8_int-ca2.crt \
9130 key_file=data_files/server8.key \
9131 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9132 hs_timeout=10000-60000 \
9133 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9134 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9135 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9136 -s "found fragmented DTLS handshake message" \
9137 -c "found fragmented DTLS handshake message" \
9138 -C "error"
9139
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9140# An autoreduction on the client-side might happen if the server is
9141# slow to reset, therefore omitting '-C "autoreduction"' below.
9142not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9143requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9144requires_config_enabled MBEDTLS_RSA_C
9145requires_config_enabled MBEDTLS_ECDSA_C
9146requires_config_enabled MBEDTLS_SHA256_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]9147requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9148requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
9149requires_config_enabled MBEDTLS_AES_C
9150requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9151requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9152run_test "DTLS fragmenting: proxy MTU, AES-CBC non-EtM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9153 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9154 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
9155 crt_file=data_files/server7_int-ca.crt \
9156 key_file=data_files/server7.key \
9157 exchanges=2 renegotiation=1 \
9158 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256 etm=0 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9159 hs_timeout=10000-60000 \
9160 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9161 "$P_CLI dtls=1 debug_level=2 \
9162 crt_file=data_files/server8_int-ca2.crt \
9163 key_file=data_files/server8.key \
9164 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]9165 hs_timeout=10000-60000 \
9166 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9167 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]9168 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]9169 -s "found fragmented DTLS handshake message" \
9170 -c "found fragmented DTLS handshake message" \
9171 -C "error"
9172
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]9173# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]9174requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9175requires_config_enabled MBEDTLS_RSA_C
9176requires_config_enabled MBEDTLS_ECDSA_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]9177requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]9178requires_config_enabled MBEDTLS_AES_C
9179requires_config_enabled MBEDTLS_GCM_C
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]9180client_needs_more_time 2
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9181requires_max_content_len 2048
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]9182run_test "DTLS fragmenting: proxy MTU + 3d" \
9183 -p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]9184 "$P_SRV dgram_packing=0 dtls=1 debug_level=2 auth_mode=required \
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]9185 crt_file=data_files/server7_int-ca.crt \
9186 key_file=data_files/server7.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]9187 hs_timeout=250-10000 mtu=512" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]9188 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]9189 crt_file=data_files/server8_int-ca2.crt \
9190 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]9191 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]9192 hs_timeout=250-10000 mtu=512" \
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]9193 0 \
9194 -s "found fragmented DTLS handshake message" \
9195 -c "found fragmented DTLS handshake message" \
9196 -C "error"
9197
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]9198# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]9199requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9200requires_config_enabled MBEDTLS_RSA_C
9201requires_config_enabled MBEDTLS_ECDSA_C
Gilles Peskinee7738c32021-07-13 20:34:55 +0200[diff] [blame]9202requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]9203requires_config_enabled MBEDTLS_AES_C
9204requires_config_enabled MBEDTLS_GCM_C
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]9205client_needs_more_time 2
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9206requires_max_content_len 2048
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]9207run_test "DTLS fragmenting: proxy MTU + 3d, nbio" \
9208 -p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
9209 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
9210 crt_file=data_files/server7_int-ca.crt \
9211 key_file=data_files/server7.key \
9212 hs_timeout=250-10000 mtu=512 nbio=2" \
9213 "$P_CLI dtls=1 debug_level=2 \
9214 crt_file=data_files/server8_int-ca2.crt \
9215 key_file=data_files/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]9216 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]9217 hs_timeout=250-10000 mtu=512 nbio=2" \
9218 0 \
9219 -s "found fragmented DTLS handshake message" \
9220 -c "found fragmented DTLS handshake message" \
9221 -C "error"
9222
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9223# interop tests for DTLS fragmentating with reliable connection
9224#
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9225# here and below we just want to test that the we fragment in a way that
9226# pleases other implementations, so we don't need the peer to fragment
9227requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9228requires_config_enabled MBEDTLS_RSA_C
9229requires_config_enabled MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]9230requires_gnutls
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9231requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9232run_test "DTLS fragmenting: gnutls server, DTLS 1.2" \
9233 "$G_SRV -u" \
9234 "$P_CLI dtls=1 debug_level=2 \
9235 crt_file=data_files/server8_int-ca2.crt \
9236 key_file=data_files/server8.key \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]9237 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9238 0 \
9239 -c "fragmenting handshake message" \
9240 -C "error"
9241
9242requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9243requires_config_enabled MBEDTLS_RSA_C
9244requires_config_enabled MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]9245requires_gnutls
Yuto Takano75ab9282021-07-26 08:27:47 +0100[diff] [blame]9246requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9247run_test "DTLS fragmenting: gnutls server, DTLS 1.0" \
9248 "$G_SRV -u" \
9249 "$P_CLI dtls=1 debug_level=2 \
9250 crt_file=data_files/server8_int-ca2.crt \
9251 key_file=data_files/server8.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]9252 mtu=512 force_version=dtls1" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9253 0 \
9254 -c "fragmenting handshake message" \
9255 -C "error"
9256
Hanno Beckerb9a00862018-08-28 10:20:22 +0100[diff] [blame]9257# We use --insecure for the GnuTLS client because it expects
9258# the hostname / IP it connects to to be the name used in the
9259# certificate obtained from the server. Here, however, it
9260# connects to 127.0.0.1 while our test certificates use 'localhost'
9261# as the server name in the certificate. This will make the
Shaun Case0e7791f2021-12-20 21:14:10 -0800[diff] [blame]9262# certificate validation fail, but passing --insecure makes
Hanno Beckerb9a00862018-08-28 10:20:22 +0100[diff] [blame]9263# GnuTLS continue the connection nonetheless.
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9264requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9265requires_config_enabled MBEDTLS_RSA_C
9266requires_config_enabled MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]9267requires_gnutls
Andrzej Kurekb4593462018-10-11 08:43:30 -0400[diff] [blame]9268requires_not_i686
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9269requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9270run_test "DTLS fragmenting: gnutls client, DTLS 1.2" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]9271 "$P_SRV dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9272 crt_file=data_files/server7_int-ca.crt \
9273 key_file=data_files/server7.key \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]9274 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]9275 "$G_CLI -u --insecure 127.0.0.1" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9276 0 \
9277 -s "fragmenting handshake message"
9278
Hanno Beckerb9a00862018-08-28 10:20:22 +0100[diff] [blame]9279# See previous test for the reason to use --insecure
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9280requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9281requires_config_enabled MBEDTLS_RSA_C
9282requires_config_enabled MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]9283requires_gnutls
Andrzej Kurekb4593462018-10-11 08:43:30 -0400[diff] [blame]9284requires_not_i686
Yuto Takano75ab9282021-07-26 08:27:47 +0100[diff] [blame]9285requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9286run_test "DTLS fragmenting: gnutls client, DTLS 1.0" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]9287 "$P_SRV dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9288 crt_file=data_files/server7_int-ca.crt \
9289 key_file=data_files/server7.key \
9290 mtu=512 force_version=dtls1" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]9291 "$G_CLI -u --insecure 127.0.0.1" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9292 0 \
9293 -s "fragmenting handshake message"
9294
9295requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9296requires_config_enabled MBEDTLS_RSA_C
9297requires_config_enabled MBEDTLS_ECDSA_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9298requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9299run_test "DTLS fragmenting: openssl server, DTLS 1.2" \
9300 "$O_SRV -dtls1_2 -verify 10" \
9301 "$P_CLI dtls=1 debug_level=2 \
9302 crt_file=data_files/server8_int-ca2.crt \
9303 key_file=data_files/server8.key \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]9304 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9305 0 \
9306 -c "fragmenting handshake message" \
9307 -C "error"
9308
9309requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9310requires_config_enabled MBEDTLS_RSA_C
9311requires_config_enabled MBEDTLS_ECDSA_C
Yuto Takano75ab9282021-07-26 08:27:47 +0100[diff] [blame]9312requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9313run_test "DTLS fragmenting: openssl server, DTLS 1.0" \
9314 "$O_SRV -dtls1 -verify 10" \
9315 "$P_CLI dtls=1 debug_level=2 \
9316 crt_file=data_files/server8_int-ca2.crt \
9317 key_file=data_files/server8.key \
9318 mtu=512 force_version=dtls1" \
9319 0 \
9320 -c "fragmenting handshake message" \
9321 -C "error"
9322
9323requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9324requires_config_enabled MBEDTLS_RSA_C
9325requires_config_enabled MBEDTLS_ECDSA_C
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9326requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9327run_test "DTLS fragmenting: openssl client, DTLS 1.2" \
9328 "$P_SRV dtls=1 debug_level=2 \
9329 crt_file=data_files/server7_int-ca.crt \
9330 key_file=data_files/server7.key \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]9331 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9332 "$O_CLI -dtls1_2" \
9333 0 \
9334 -s "fragmenting handshake message"
9335
9336requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9337requires_config_enabled MBEDTLS_RSA_C
9338requires_config_enabled MBEDTLS_ECDSA_C
Yuto Takano75ab9282021-07-26 08:27:47 +0100[diff] [blame]9339requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]9340run_test "DTLS fragmenting: openssl client, DTLS 1.0" \
9341 "$P_SRV dtls=1 debug_level=2 \
9342 crt_file=data_files/server7_int-ca.crt \
9343 key_file=data_files/server7.key \
9344 mtu=512 force_version=dtls1" \
9345 "$O_CLI -dtls1" \
9346 0 \
9347 -s "fragmenting handshake message"
9348
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9349# interop tests for DTLS fragmentating with unreliable connection
9350#
9351# again we just want to test that the we fragment in a way that
9352# pleases other implementations, so we don't need the peer to fragment
9353requires_gnutls_next
9354requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9355requires_config_enabled MBEDTLS_RSA_C
9356requires_config_enabled MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]9357client_needs_more_time 4
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9358requires_max_content_len 2048
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9359run_test "DTLS fragmenting: 3d, gnutls server, DTLS 1.2" \
9360 -p "$P_PXY drop=8 delay=8 duplicate=8" \
9361 "$G_NEXT_SRV -u" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]9362 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9363 crt_file=data_files/server8_int-ca2.crt \
9364 key_file=data_files/server8.key \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]9365 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9366 0 \
9367 -c "fragmenting handshake message" \
9368 -C "error"
9369
9370requires_gnutls_next
9371requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9372requires_config_enabled MBEDTLS_RSA_C
9373requires_config_enabled MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]9374client_needs_more_time 4
Yuto Takano75ab9282021-07-26 08:27:47 +0100[diff] [blame]9375requires_max_content_len 2048
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9376run_test "DTLS fragmenting: 3d, gnutls server, DTLS 1.0" \
9377 -p "$P_PXY drop=8 delay=8 duplicate=8" \
9378 "$G_NEXT_SRV -u" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]9379 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9380 crt_file=data_files/server8_int-ca2.crt \
9381 key_file=data_files/server8.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]9382 hs_timeout=250-60000 mtu=512 force_version=dtls1" \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9383 0 \
9384 -c "fragmenting handshake message" \
9385 -C "error"
9386
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]9387requires_gnutls_next
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9388requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9389requires_config_enabled MBEDTLS_RSA_C
9390requires_config_enabled MBEDTLS_ECDSA_C
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9391client_needs_more_time 4
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9392requires_max_content_len 2048
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9393run_test "DTLS fragmenting: 3d, gnutls client, DTLS 1.2" \
9394 -p "$P_PXY drop=8 delay=8 duplicate=8" \
9395 "$P_SRV dtls=1 debug_level=2 \
9396 crt_file=data_files/server7_int-ca.crt \
9397 key_file=data_files/server7.key \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]9398 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]9399 "$G_NEXT_CLI -u --insecure 127.0.0.1" \
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9400 0 \
9401 -s "fragmenting handshake message"
9402
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]9403requires_gnutls_next
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9404requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9405requires_config_enabled MBEDTLS_RSA_C
9406requires_config_enabled MBEDTLS_ECDSA_C
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9407client_needs_more_time 4
Yuto Takano75ab9282021-07-26 08:27:47 +0100[diff] [blame]9408requires_max_content_len 2048
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9409run_test "DTLS fragmenting: 3d, gnutls client, DTLS 1.0" \
9410 -p "$P_PXY drop=8 delay=8 duplicate=8" \
9411 "$P_SRV dtls=1 debug_level=2 \
9412 crt_file=data_files/server7_int-ca.crt \
9413 key_file=data_files/server7.key \
9414 hs_timeout=250-60000 mtu=512 force_version=dtls1" \
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]9415 "$G_NEXT_CLI -u --insecure 127.0.0.1" \
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9416 0 \
9417 -s "fragmenting handshake message"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9418
Zhangsen Wang1c981f52022-08-02 06:18:40 +0000[diff] [blame]9419## The two tests below require 1.1.1a or higher version of openssl, otherwise
Zhangsen Wang7d0e6582022-06-29 07:33:35 +0000[diff] [blame]9420## it might trigger a bug due to openssl (https://github.com/openssl/openssl/issues/6902)
9421requires_openssl_next
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9422requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9423requires_config_enabled MBEDTLS_RSA_C
9424requires_config_enabled MBEDTLS_ECDSA_C
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9425client_needs_more_time 4
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9426requires_max_content_len 2048
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9427run_test "DTLS fragmenting: 3d, openssl server, DTLS 1.2" \
9428 -p "$P_PXY drop=8 delay=8 duplicate=8" \
Zhangsen Wang7d0e6582022-06-29 07:33:35 +0000[diff] [blame]9429 "$O_NEXT_SRV -dtls1_2 -verify 10" \
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9430 "$P_CLI dtls=1 debug_level=2 \
9431 crt_file=data_files/server8_int-ca2.crt \
9432 key_file=data_files/server8.key \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]9433 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]9434 0 \
9435 -c "fragmenting handshake message" \
9436 -C "error"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9437
Zhangsen Wang7d0e6582022-06-29 07:33:35 +0000[diff] [blame]9438requires_openssl_next
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9439requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9440requires_config_enabled MBEDTLS_RSA_C
9441requires_config_enabled MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]9442client_needs_more_time 4
Yuto Takano75ab9282021-07-26 08:27:47 +0100[diff] [blame]9443requires_max_content_len 2048
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9444run_test "DTLS fragmenting: 3d, openssl server, DTLS 1.0" \
9445 -p "$P_PXY drop=8 delay=8 duplicate=8" \
Zhangsen Wang7d0e6582022-06-29 07:33:35 +0000[diff] [blame]9446 "$O_NEXT_SRV -dtls1 -verify 10" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]9447 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9448 crt_file=data_files/server8_int-ca2.crt \
9449 key_file=data_files/server8.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]9450 hs_timeout=250-60000 mtu=512 force_version=dtls1" \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9451 0 \
9452 -c "fragmenting handshake message" \
9453 -C "error"
9454
Zhangsen Wang1c981f52022-08-02 06:18:40 +0000[diff] [blame]9455## the two tests below will time out with certain seed.
9456## The cause is an openssl bug (https://github.com/openssl/openssl/issues/18887)
9457skip_next_test
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]9458requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9459requires_config_enabled MBEDTLS_RSA_C
9460requires_config_enabled MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]9461client_needs_more_time 4
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]9462requires_max_content_len 2048
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]9463run_test "DTLS fragmenting: 3d, openssl client, DTLS 1.2" \
9464 -p "$P_PXY drop=8 delay=8 duplicate=8" \
9465 "$P_SRV dtls=1 debug_level=2 \
9466 crt_file=data_files/server7_int-ca.crt \
9467 key_file=data_files/server7.key \
Xiaofei Baif40545d2021-12-02 08:43:35 +0000[diff] [blame]9468 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]9469 "$O_CLI -dtls1_2" \
9470 0 \
9471 -s "fragmenting handshake message"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9472
9473# -nbio is added to prevent s_client from blocking in case of duplicated
9474# messages at the end of the handshake
Zhangsen Wang1c981f52022-08-02 06:18:40 +0000[diff] [blame]9475skip_next_test
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9476requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9477requires_config_enabled MBEDTLS_RSA_C
9478requires_config_enabled MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]9479client_needs_more_time 4
Yuto Takano75ab9282021-07-26 08:27:47 +0100[diff] [blame]9480requires_max_content_len 2048
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9481run_test "DTLS fragmenting: 3d, openssl client, DTLS 1.0" \
9482 -p "$P_PXY drop=8 delay=8 duplicate=8" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]9483 "$P_SRV dgram_packing=0 dtls=1 debug_level=2 \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9484 crt_file=data_files/server7_int-ca.crt \
9485 key_file=data_files/server7.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]9486 hs_timeout=250-60000 mtu=512 force_version=dtls1" \
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]9487 "$O_CLI -nbio -dtls1" \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]9488 0 \
9489 -s "fragmenting handshake message"
9490
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9491# Tests for DTLS-SRTP (RFC 5764)
9492requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9493run_test "DTLS-SRTP all profiles supported" \
9494 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
9495 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
9496 0 \
9497 -s "found use_srtp extension" \
9498 -s "found srtp profile" \
9499 -s "selected srtp profile" \
9500 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9501 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9502 -c "client hello, adding use_srtp extension" \
9503 -c "found use_srtp extension" \
9504 -c "found srtp profile" \
9505 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9506 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9507 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9508 -C "error"
9509
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9510
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9511requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9512run_test "DTLS-SRTP server supports all profiles. Client supports one profile." \
9513 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9514 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=5 debug_level=3" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9515 0 \
9516 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9517 -s "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
9518 -s "selected srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9519 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9520 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9521 -c "client hello, adding use_srtp extension" \
9522 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9523 -c "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9524 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9525 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9526 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9527 -C "error"
9528
9529requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9530run_test "DTLS-SRTP server supports one profile. Client supports all profiles." \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9531 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9532 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
9533 0 \
9534 -s "found use_srtp extension" \
9535 -s "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9536 -s "selected srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9537 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9538 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9539 -c "client hello, adding use_srtp extension" \
9540 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9541 -c "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9542 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9543 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9544 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9545 -C "error"
9546
9547requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9548run_test "DTLS-SRTP server and Client support only one matching profile." \
9549 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
9550 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
9551 0 \
9552 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9553 -s "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
9554 -s "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9555 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9556 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9557 -c "client hello, adding use_srtp extension" \
9558 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9559 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9560 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9561 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9562 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9563 -C "error"
9564
9565requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9566run_test "DTLS-SRTP server and Client support only one different profile." \
9567 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9568 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9569 0 \
9570 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9571 -s "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9572 -S "selected srtp profile" \
9573 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9574 -S "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9575 -c "client hello, adding use_srtp extension" \
9576 -C "found use_srtp extension" \
9577 -C "found srtp profile" \
9578 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9579 -C "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9580 -C "error"
9581
9582requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9583run_test "DTLS-SRTP server doesn't support use_srtp extension." \
9584 "$P_SRV dtls=1 debug_level=3" \
9585 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
9586 0 \
9587 -s "found use_srtp extension" \
9588 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9589 -S "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9590 -c "client hello, adding use_srtp extension" \
9591 -C "found use_srtp extension" \
9592 -C "found srtp profile" \
9593 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9594 -C "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9595 -C "error"
9596
9597requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9598run_test "DTLS-SRTP all profiles supported. mki used" \
9599 "$P_SRV dtls=1 use_srtp=1 support_mki=1 debug_level=3" \
9600 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
9601 0 \
9602 -s "found use_srtp extension" \
9603 -s "found srtp profile" \
9604 -s "selected srtp profile" \
9605 -s "server hello, adding use_srtp extension" \
9606 -s "dumping 'using mki' (8 bytes)" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9607 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9608 -c "client hello, adding use_srtp extension" \
9609 -c "found use_srtp extension" \
9610 -c "found srtp profile" \
9611 -c "selected srtp profile" \
9612 -c "dumping 'sending mki' (8 bytes)" \
9613 -c "dumping 'received mki' (8 bytes)" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9614 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9615 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Johan Pascal20c7db32020-10-26 22:45:58 +0100[diff] [blame]9616 -g "find_in_both '^ *DTLS-SRTP mki value: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9617 -C "error"
9618
9619requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9620run_test "DTLS-SRTP all profiles supported. server doesn't support mki." \
9621 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
9622 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
9623 0 \
9624 -s "found use_srtp extension" \
9625 -s "found srtp profile" \
9626 -s "selected srtp profile" \
9627 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9628 -s "DTLS-SRTP key material is"\
Johan Pascal5ef72d22020-10-28 17:05:47 +0100[diff] [blame]9629 -s "DTLS-SRTP no mki value negotiated"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9630 -S "dumping 'using mki' (8 bytes)" \
9631 -c "client hello, adding use_srtp extension" \
9632 -c "found use_srtp extension" \
9633 -c "found srtp profile" \
9634 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9635 -c "DTLS-SRTP key material is"\
Johan Pascal5ef72d22020-10-28 17:05:47 +0100[diff] [blame]9636 -c "DTLS-SRTP no mki value negotiated"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9637 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]9638 -c "dumping 'sending mki' (8 bytes)" \
9639 -C "dumping 'received mki' (8 bytes)" \
9640 -C "error"
9641
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9642requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9643run_test "DTLS-SRTP all profiles supported. openssl client." \
9644 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9645 "$O_CLI -dtls1 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9646 0 \
9647 -s "found use_srtp extension" \
9648 -s "found srtp profile" \
9649 -s "selected srtp profile" \
9650 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9651 -s "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9652 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9653 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_80"
9654
9655requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9656run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. openssl client." \
9657 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9658 "$O_CLI -dtls1 -use_srtp SRTP_AES128_CM_SHA1_32:SRTP_AES128_CM_SHA1_80 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9659 0 \
9660 -s "found use_srtp extension" \
9661 -s "found srtp profile" \
9662 -s "selected srtp profile" \
9663 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9664 -s "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9665 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9666 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
9667
9668requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9669run_test "DTLS-SRTP server supports all profiles. Client supports one profile. openssl client." \
9670 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9671 "$O_CLI -dtls1 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9672 0 \
9673 -s "found use_srtp extension" \
9674 -s "found srtp profile" \
9675 -s "selected srtp profile" \
9676 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9677 -s "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9678 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9679 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
9680
9681requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9682run_test "DTLS-SRTP server supports one profile. Client supports all profiles. openssl client." \
9683 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9684 "$O_CLI -dtls1 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9685 0 \
9686 -s "found use_srtp extension" \
9687 -s "found srtp profile" \
9688 -s "selected srtp profile" \
9689 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9690 -s "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9691 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9692 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
9693
9694requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9695run_test "DTLS-SRTP server and Client support only one matching profile. openssl client." \
9696 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9697 "$O_CLI -dtls1 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9698 0 \
9699 -s "found use_srtp extension" \
9700 -s "found srtp profile" \
9701 -s "selected srtp profile" \
9702 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9703 -s "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]9704 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9705 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
9706
9707requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9708run_test "DTLS-SRTP server and Client support only one different profile. openssl client." \
9709 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=1 debug_level=3" \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9710 "$O_CLI -dtls1 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9711 0 \
9712 -s "found use_srtp extension" \
9713 -s "found srtp profile" \
9714 -S "selected srtp profile" \
9715 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9716 -S "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9717 -C "SRTP Extension negotiated, profile"
9718
9719requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9720run_test "DTLS-SRTP server doesn't support use_srtp extension. openssl client" \
9721 "$P_SRV dtls=1 debug_level=3" \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9722 "$O_CLI -dtls1 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9723 0 \
9724 -s "found use_srtp extension" \
9725 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9726 -S "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9727 -C "SRTP Extension negotiated, profile"
9728
9729requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9730run_test "DTLS-SRTP all profiles supported. openssl server" \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9731 "$O_SRV -dtls1 -verify 0 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9732 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
9733 0 \
9734 -c "client hello, adding use_srtp extension" \
9735 -c "found use_srtp extension" \
9736 -c "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9737 -c "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_80" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9738 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9739 -C "error"
9740
9741requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9742run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. openssl server." \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9743 "$O_SRV -dtls1 -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32:SRTP_AES128_CM_SHA1_80 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9744 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
9745 0 \
9746 -c "client hello, adding use_srtp extension" \
9747 -c "found use_srtp extension" \
9748 -c "found srtp profile" \
9749 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9750 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9751 -C "error"
9752
9753requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9754run_test "DTLS-SRTP server supports all profiles. Client supports one profile. openssl server." \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9755 "$O_SRV -dtls1 -verify 0 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9756 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
9757 0 \
9758 -c "client hello, adding use_srtp extension" \
9759 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9760 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9761 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9762 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9763 -C "error"
9764
9765requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9766run_test "DTLS-SRTP server supports one profile. Client supports all profiles. openssl server." \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9767 "$O_SRV -dtls1 -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9768 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
9769 0 \
9770 -c "client hello, adding use_srtp extension" \
9771 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9772 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9773 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9774 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9775 -C "error"
9776
9777requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9778run_test "DTLS-SRTP server and Client support only one matching profile. openssl server." \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9779 "$O_SRV -dtls1 -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9780 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
9781 0 \
9782 -c "client hello, adding use_srtp extension" \
9783 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9784 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9785 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9786 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9787 -C "error"
9788
9789requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9790run_test "DTLS-SRTP server and Client support only one different profile. openssl server." \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9791 "$O_SRV -dtls1 -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9792 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9793 0 \
9794 -c "client hello, adding use_srtp extension" \
9795 -C "found use_srtp extension" \
9796 -C "found srtp profile" \
9797 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9798 -C "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9799 -C "error"
9800
9801requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9802run_test "DTLS-SRTP server doesn't support use_srtp extension. openssl server" \
9803 "$O_SRV -dtls1" \
9804 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
9805 0 \
9806 -c "client hello, adding use_srtp extension" \
9807 -C "found use_srtp extension" \
9808 -C "found srtp profile" \
9809 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9810 -C "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9811 -C "error"
9812
9813requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
9814run_test "DTLS-SRTP all profiles supported. server doesn't support mki. openssl server." \
Johan Pascal39cfd3b2020-09-23 18:49:13 +0200[diff] [blame]9815 "$O_SRV -dtls1 -verify 0 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9816 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
9817 0 \
9818 -c "client hello, adding use_srtp extension" \
9819 -c "found use_srtp extension" \
9820 -c "found srtp profile" \
9821 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9822 -c "DTLS-SRTP key material is"\
Johan Pascal5ef72d22020-10-28 17:05:47 +0100[diff] [blame]9823 -c "DTLS-SRTP no mki value negotiated"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9824 -c "dumping 'sending mki' (8 bytes)" \
9825 -C "dumping 'received mki' (8 bytes)" \
9826 -C "error"
9827
9828requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9829requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9830run_test "DTLS-SRTP all profiles supported. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9831 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
9832 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9833 0 \
9834 -s "found use_srtp extension" \
9835 -s "found srtp profile" \
9836 -s "selected srtp profile" \
9837 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9838 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9839 -c "SRTP profile: SRTP_AES128_CM_HMAC_SHA1_80"
9840
9841requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9842requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9843run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9844 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
9845 "$G_CLI -u --srtp-profiles=SRTP_NULL_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_80:SRTP_NULL_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9846 0 \
9847 -s "found use_srtp extension" \
9848 -s "found srtp profile" \
9849 -s "selected srtp profile" \
9850 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9851 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9852 -c "SRTP profile: SRTP_NULL_HMAC_SHA1_80"
9853
9854requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9855requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9856run_test "DTLS-SRTP server supports all profiles. Client supports one profile. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9857 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
9858 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9859 0 \
9860 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9861 -s "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
9862 -s "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9863 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9864 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9865 -c "SRTP profile: SRTP_AES128_CM_HMAC_SHA1_32"
9866
9867requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9868requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9869run_test "DTLS-SRTP server supports one profile. Client supports all profiles. gnutls client." \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9870 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9871 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9872 0 \
9873 -s "found use_srtp extension" \
9874 -s "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9875 -s "selected srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9876 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9877 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9878 -c "SRTP profile: SRTP_NULL_SHA1_32"
9879
9880requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9881requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9882run_test "DTLS-SRTP server and Client support only one matching profile. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9883 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
9884 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9885 0 \
9886 -s "found use_srtp extension" \
9887 -s "found srtp profile" \
9888 -s "selected srtp profile" \
9889 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9890 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9891 -c "SRTP profile: SRTP_AES128_CM_HMAC_SHA1_32"
9892
9893requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9894requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9895run_test "DTLS-SRTP server and Client support only one different profile. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9896 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=1 debug_level=3" \
9897 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9898 0 \
9899 -s "found use_srtp extension" \
9900 -s "found srtp profile" \
9901 -S "selected srtp profile" \
9902 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9903 -S "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9904 -C "SRTP profile:"
9905
9906requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9907requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9908run_test "DTLS-SRTP server doesn't support use_srtp extension. gnutls client" \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9909 "$P_SRV dtls=1 debug_level=3" \
9910 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9911 0 \
9912 -s "found use_srtp extension" \
9913 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9914 -S "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9915 -C "SRTP profile:"
9916
9917requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9918requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9919run_test "DTLS-SRTP all profiles supported. gnutls server" \
9920 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
9921 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
9922 0 \
9923 -c "client hello, adding use_srtp extension" \
9924 -c "found use_srtp extension" \
9925 -c "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9926 -c "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_80" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9927 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9928 -C "error"
9929
9930requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9931requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9932run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. gnutls server." \
9933 "$G_SRV -u --srtp-profiles=SRTP_NULL_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_80:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
9934 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
9935 0 \
9936 -c "client hello, adding use_srtp extension" \
9937 -c "found use_srtp extension" \
9938 -c "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9939 -c "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_80" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9940 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9941 -C "error"
9942
9943requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9944requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9945run_test "DTLS-SRTP server supports all profiles. Client supports one profile. gnutls server." \
9946 "$G_SRV -u --srtp-profiles=SRTP_NULL_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_80:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
9947 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
9948 0 \
9949 -c "client hello, adding use_srtp extension" \
9950 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9951 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9952 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9953 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9954 -C "error"
9955
9956requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9957requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9958run_test "DTLS-SRTP server supports one profile. Client supports all profiles. gnutls server." \
9959 "$G_SRV -u --srtp-profiles=SRTP_NULL_HMAC_SHA1_80" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9960 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9961 0 \
9962 -c "client hello, adding use_srtp extension" \
9963 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9964 -c "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9965 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9966 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9967 -C "error"
9968
9969requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9970requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9971run_test "DTLS-SRTP server and Client support only one matching profile. gnutls server." \
9972 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32" \
9973 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
9974 0 \
9975 -c "client hello, adding use_srtp extension" \
9976 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9977 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9978 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9979 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9980 -C "error"
9981
9982requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9983requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9984run_test "DTLS-SRTP server and Client support only one different profile. gnutls server." \
9985 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]9986 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9987 0 \
9988 -c "client hello, adding use_srtp extension" \
9989 -C "found use_srtp extension" \
9990 -C "found srtp profile" \
9991 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]9992 -C "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9993 -C "error"
9994
9995requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]9996requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]9997run_test "DTLS-SRTP server doesn't support use_srtp extension. gnutls server" \
9998 "$G_SRV -u" \
9999 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
10000 0 \
10001 -c "client hello, adding use_srtp extension" \
10002 -C "found use_srtp extension" \
10003 -C "found srtp profile" \
10004 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]10005 -C "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]10006 -C "error"
10007
10008requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]10009requires_gnutls
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]10010run_test "DTLS-SRTP all profiles supported. mki used. gnutls server." \
10011 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
10012 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
10013 0 \
10014 -c "client hello, adding use_srtp extension" \
10015 -c "found use_srtp extension" \
10016 -c "found srtp profile" \
10017 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]10018 -c "DTLS-SRTP key material is"\
Johan Pascal20c7db32020-10-26 22:45:58 +0100[diff] [blame]10019 -c "DTLS-SRTP mki value:"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]10020 -c "dumping 'sending mki' (8 bytes)" \
10021 -c "dumping 'received mki' (8 bytes)" \
10022 -C "error"
10023
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]10024# Tests for specific things with "unreliable" UDP connection
10025
10026not_with_valgrind # spurious resend due to timeout
10027run_test "DTLS proxy: reference" \
10028 -p "$P_PXY" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]10029 "$P_SRV dtls=1 debug_level=2 hs_timeout=10000-20000" \
10030 "$P_CLI dtls=1 debug_level=2 hs_timeout=10000-20000" \
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]10031 0 \
10032 -C "replayed record" \
10033 -S "replayed record" \
Hanno Beckerb2a86c32019-07-19 15:43:09 +0100[diff] [blame]10034 -C "Buffer record from epoch" \
10035 -S "Buffer record from epoch" \
10036 -C "ssl_buffer_message" \
10037 -S "ssl_buffer_message" \
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]10038 -C "discarding invalid record" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]10039 -S "discarding invalid record" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]10040 -S "resend" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]10041 -s "Extra-header:" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]10042 -c "HTTP/1.0 200 OK"
10043
10044not_with_valgrind # spurious resend due to timeout
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]10045run_test "DTLS proxy: duplicate every packet" \
10046 -p "$P_PXY duplicate=1" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]10047 "$P_SRV dtls=1 dgram_packing=0 debug_level=2 hs_timeout=10000-20000" \
10048 "$P_CLI dtls=1 dgram_packing=0 debug_level=2 hs_timeout=10000-20000" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]10049 0 \
10050 -c "replayed record" \
10051 -s "replayed record" \
10052 -c "record from another epoch" \
10053 -s "record from another epoch" \
10054 -S "resend" \
10055 -s "Extra-header:" \
10056 -c "HTTP/1.0 200 OK"
10057
10058run_test "DTLS proxy: duplicate every packet, server anti-replay off" \
10059 -p "$P_PXY duplicate=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]10060 "$P_SRV dtls=1 dgram_packing=0 debug_level=2 anti_replay=0" \
10061 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]10062 0 \
10063 -c "replayed record" \
10064 -S "replayed record" \
10065 -c "record from another epoch" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]10066 -s "record from another epoch" \
10067 -c "resend" \
10068 -s "resend" \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]10069 -s "Extra-header:" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]10070 -c "HTTP/1.0 200 OK"
10071
10072run_test "DTLS proxy: multiple records in same datagram" \
10073 -p "$P_PXY pack=50" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]10074 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
10075 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]10076 0 \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]10077 -c "next record in same datagram" \
10078 -s "next record in same datagram"
10079
10080run_test "DTLS proxy: multiple records in same datagram, duplicate every packet" \
10081 -p "$P_PXY pack=50 duplicate=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]10082 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
10083 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]10084 0 \
10085 -c "next record in same datagram" \
10086 -s "next record in same datagram"
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]10087
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]10088run_test "DTLS proxy: inject invalid AD record, default badmac_limit" \
10089 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]10090 "$P_SRV dtls=1 dgram_packing=0 debug_level=1" \
10091 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]10092 0 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]10093 -c "discarding invalid record (mac)" \
10094 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]10095 -s "Extra-header:" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]10096 -c "HTTP/1.0 200 OK" \
10097 -S "too many records with bad MAC" \
10098 -S "Verification of the message MAC failed"
10099
10100run_test "DTLS proxy: inject invalid AD record, badmac_limit 1" \
10101 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]10102 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=1" \
10103 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]10104 1 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]10105 -C "discarding invalid record (mac)" \
10106 -S "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]10107 -S "Extra-header:" \
10108 -C "HTTP/1.0 200 OK" \
10109 -s "too many records with bad MAC" \
10110 -s "Verification of the message MAC failed"
10111
10112run_test "DTLS proxy: inject invalid AD record, badmac_limit 2" \
10113 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]10114 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=2" \
10115 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]10116 0 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]10117 -c "discarding invalid record (mac)" \
10118 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]10119 -s "Extra-header:" \
10120 -c "HTTP/1.0 200 OK" \
10121 -S "too many records with bad MAC" \
10122 -S "Verification of the message MAC failed"
10123
10124run_test "DTLS proxy: inject invalid AD record, badmac_limit 2, exchanges 2"\
10125 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]10126 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=2 exchanges=2" \
10127 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100 exchanges=2" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]10128 1 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]10129 -c "discarding invalid record (mac)" \
10130 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]10131 -s "Extra-header:" \
10132 -c "HTTP/1.0 200 OK" \
10133 -s "too many records with bad MAC" \
10134 -s "Verification of the message MAC failed"
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]10135
10136run_test "DTLS proxy: delay ChangeCipherSpec" \
10137 -p "$P_PXY delay_ccs=1" \
Hanno Beckerc4305232018-08-14 13:41:21 +0100[diff] [blame]10138 "$P_SRV dtls=1 debug_level=1 dgram_packing=0" \
10139 "$P_CLI dtls=1 debug_level=1 dgram_packing=0" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]10140 0 \
10141 -c "record from another epoch" \
10142 -s "record from another epoch" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]10143 -s "Extra-header:" \
10144 -c "HTTP/1.0 200 OK"
10145
Hanno Beckeraa5d0c42018-08-16 13:15:19 +0100[diff] [blame]10146# Tests for reordering support with DTLS
10147
Gilles Peskine22cc6492022-03-14 18:21:24 +0100[diff] [blame]10148requires_certificate_authentication
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10149run_test "DTLS reordering: Buffer out-of-order handshake message on client" \
10150 -p "$P_PXY delay_srv=ServerHello" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10151 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
10152 hs_timeout=2500-60000" \
10153 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
10154 hs_timeout=2500-60000" \
Hanno Beckere3842212018-08-16 15:28:59 +0100[diff] [blame]10155 0 \
10156 -c "Buffering HS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10157 -c "Next handshake message has been buffered - load"\
10158 -S "Buffering HS message" \
10159 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10160 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10161 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10162 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10163 -S "Remember CCS message"
Hanno Beckere3842212018-08-16 15:28:59 +0100[diff] [blame]10164
Gilles Peskine22cc6492022-03-14 18:21:24 +0100[diff] [blame]10165requires_certificate_authentication
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]10166run_test "DTLS reordering: Buffer out-of-order handshake message fragment on client" \
10167 -p "$P_PXY delay_srv=ServerHello" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10168 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
10169 hs_timeout=2500-60000" \
10170 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
10171 hs_timeout=2500-60000" \
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]10172 0 \
10173 -c "Buffering HS message" \
10174 -c "found fragmented DTLS handshake message"\
10175 -c "Next handshake message 1 not or only partially bufffered" \
10176 -c "Next handshake message has been buffered - load"\
10177 -S "Buffering HS message" \
10178 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10179 -C "Injecting buffered CCS message" \
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]10180 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10181 -S "Injecting buffered CCS message" \
Hanno Beckeraa5d0c42018-08-16 13:15:19 +0100[diff] [blame]10182 -S "Remember CCS message"
10183
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10184# The client buffers the ServerKeyExchange before receiving the fragmented
10185# Certificate message; at the time of writing, together these are aroudn 1200b
10186# in size, so that the bound below ensures that the certificate can be reassembled
10187# while keeping the ServerKeyExchange.
Gilles Peskine22cc6492022-03-14 18:21:24 +0100[diff] [blame]10188requires_certificate_authentication
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10189requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 1300
10190run_test "DTLS reordering: Buffer out-of-order hs msg before reassembling next" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]10191 -p "$P_PXY delay_srv=Certificate delay_srv=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10192 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
10193 hs_timeout=2500-60000" \
10194 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
10195 hs_timeout=2500-60000" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]10196 0 \
10197 -c "Buffering HS message" \
10198 -c "Next handshake message has been buffered - load"\
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10199 -C "attempt to make space by freeing buffered messages" \
10200 -S "Buffering HS message" \
10201 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10202 -C "Injecting buffered CCS message" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10203 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10204 -S "Injecting buffered CCS message" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10205 -S "Remember CCS message"
10206
10207# The size constraints ensure that the delayed certificate message can't
10208# be reassembled while keeping the ServerKeyExchange message, but it can
10209# when dropping it first.
Gilles Peskine22cc6492022-03-14 18:21:24 +0100[diff] [blame]10210requires_certificate_authentication
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10211requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 900
10212requires_config_value_at_most "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 1299
10213run_test "DTLS reordering: Buffer out-of-order hs msg before reassembling next, free buffered msg" \
10214 -p "$P_PXY delay_srv=Certificate delay_srv=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10215 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
10216 hs_timeout=2500-60000" \
10217 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
10218 hs_timeout=2500-60000" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10219 0 \
10220 -c "Buffering HS message" \
10221 -c "attempt to make space by freeing buffered future messages" \
10222 -c "Enough space available after freeing buffered HS messages" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]10223 -S "Buffering HS message" \
10224 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10225 -C "Injecting buffered CCS message" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]10226 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10227 -S "Injecting buffered CCS message" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]10228 -S "Remember CCS message"
10229
Gilles Peskine22cc6492022-03-14 18:21:24 +0100[diff] [blame]10230requires_certificate_authentication
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10231run_test "DTLS reordering: Buffer out-of-order handshake message on server" \
10232 -p "$P_PXY delay_cli=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10233 "$P_SRV dgram_packing=0 auth_mode=required cookies=0 dtls=1 debug_level=2 \
10234 hs_timeout=2500-60000" \
10235 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
10236 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10237 0 \
10238 -C "Buffering HS message" \
10239 -C "Next handshake message has been buffered - load"\
10240 -s "Buffering HS message" \
10241 -s "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10242 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10243 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10244 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10245 -S "Remember CCS message"
10246
Gilles Peskine22cc6492022-03-14 18:21:24 +0100[diff] [blame]10247requires_certificate_authentication
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10248run_test "DTLS reordering: Buffer out-of-order CCS message on client"\
10249 -p "$P_PXY delay_srv=NewSessionTicket" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10250 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
10251 hs_timeout=2500-60000" \
10252 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
10253 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10254 0 \
10255 -C "Buffering HS message" \
10256 -C "Next handshake message has been buffered - load"\
10257 -S "Buffering HS message" \
10258 -S "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10259 -c "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10260 -c "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10261 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10262 -S "Remember CCS message"
10263
Gilles Peskine22cc6492022-03-14 18:21:24 +0100[diff] [blame]10264requires_certificate_authentication
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10265run_test "DTLS reordering: Buffer out-of-order CCS message on server"\
10266 -p "$P_PXY delay_cli=ClientKeyExchange" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10267 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
10268 hs_timeout=2500-60000" \
10269 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
10270 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10271 0 \
10272 -C "Buffering HS message" \
10273 -C "Next handshake message has been buffered - load"\
10274 -S "Buffering HS message" \
10275 -S "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10276 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10277 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]10278 -s "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10279 -s "Remember CCS message"
10280
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10281run_test "DTLS reordering: Buffer encrypted Finished message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10282 -p "$P_PXY delay_ccs=1" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10283 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
10284 hs_timeout=2500-60000" \
10285 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
10286 hs_timeout=2500-60000" \
Hanno Beckerb34149c2018-08-16 15:29:06 +0100[diff] [blame]10287 0 \
10288 -s "Buffer record from epoch 1" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]10289 -s "Found buffered record from current epoch - load" \
10290 -c "Buffer record from epoch 1" \
10291 -c "Found buffered record from current epoch - load"
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10292
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10293# In this test, both the fragmented NewSessionTicket and the ChangeCipherSpec
10294# from the server are delayed, so that the encrypted Finished message
10295# is received and buffered. When the fragmented NewSessionTicket comes
10296# in afterwards, the encrypted Finished message must be freed in order
10297# to make space for the NewSessionTicket to be reassembled.
10298# This works only in very particular circumstances:
10299# - MBEDTLS_SSL_DTLS_MAX_BUFFERING must be large enough to allow buffering
10300# of the NewSessionTicket, but small enough to also allow buffering of
10301# the encrypted Finished message.
10302# - The MTU setting on the server must be so small that the NewSessionTicket
10303# needs to be fragmented.
10304# - All messages sent by the server must be small enough to be either sent
10305# without fragmentation or be reassembled within the bounds of
10306# MBEDTLS_SSL_DTLS_MAX_BUFFERING. Achieve this by testing with a PSK-based
10307# handshake, omitting CRTs.
Manuel Pégourié-Gonnardeef4c752019-05-28 10:21:30 +0200[diff] [blame]10308requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 190
10309requires_config_value_at_most "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 230
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10310run_test "DTLS reordering: Buffer encrypted Finished message, drop for fragmented NewSessionTicket" \
10311 -p "$P_PXY delay_srv=NewSessionTicket delay_srv=NewSessionTicket delay_ccs=1" \
Manuel Pégourié-Gonnardeef4c752019-05-28 10:21:30 +0200[diff] [blame]10312 "$P_SRV mtu=140 response_size=90 dgram_packing=0 psk=abc123 psk_identity=foo cookies=0 dtls=1 debug_level=2" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]10313 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8 psk=abc123 psk_identity=foo" \
10314 0 \
10315 -s "Buffer record from epoch 1" \
10316 -s "Found buffered record from current epoch - load" \
10317 -c "Buffer record from epoch 1" \
10318 -C "Found buffered record from current epoch - load" \
10319 -c "Enough space available after freeing future epoch record"
10320
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]10321# Tests for "randomly unreliable connection": try a variety of flows and peers
10322
10323client_needs_more_time 2
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]10324run_test "DTLS proxy: 3d (drop, delay, duplicate), \"short\" PSK handshake" \
10325 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10326 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10327 psk=abc123" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10328 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10329 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
10330 0 \
10331 -s "Extra-header:" \
10332 -c "HTTP/1.0 200 OK"
10333
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10334client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10335run_test "DTLS proxy: 3d, \"short\" RSA handshake" \
10336 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10337 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none" \
10338 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10339 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10340 0 \
10341 -s "Extra-header:" \
10342 -c "HTTP/1.0 200 OK"
10343
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10344client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10345run_test "DTLS proxy: 3d, \"short\" (no ticket, no cli_auth) FS handshake" \
10346 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10347 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none" \
10348 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10349 0 \
10350 -s "Extra-header:" \
10351 -c "HTTP/1.0 200 OK"
10352
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10353client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10354run_test "DTLS proxy: 3d, FS, client auth" \
10355 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10356 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=required" \
10357 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10358 0 \
10359 -s "Extra-header:" \
10360 -c "HTTP/1.0 200 OK"
10361
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10362client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10363run_test "DTLS proxy: 3d, FS, ticket" \
10364 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10365 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1 auth_mode=none" \
10366 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10367 0 \
10368 -s "Extra-header:" \
10369 -c "HTTP/1.0 200 OK"
10370
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10371client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]10372run_test "DTLS proxy: 3d, max handshake (FS, ticket + client auth)" \
10373 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10374 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1 auth_mode=required" \
10375 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]10376 0 \
10377 -s "Extra-header:" \
10378 -c "HTTP/1.0 200 OK"
10379
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10380client_needs_more_time 2
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]10381run_test "DTLS proxy: 3d, max handshake, nbio" \
10382 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10383 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 nbio=2 tickets=1 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]10384 auth_mode=required" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10385 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 nbio=2 tickets=1" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]10386 0 \
10387 -s "Extra-header:" \
10388 -c "HTTP/1.0 200 OK"
10389
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10390client_needs_more_time 4
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]10391requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard7a26d732014-10-02 14:50:46 +0200[diff] [blame]10392run_test "DTLS proxy: 3d, min handshake, resumption" \
10393 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10394 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnard7a26d732014-10-02 14:50:46 +0200[diff] [blame]10395 psk=abc123 debug_level=3" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10396 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]10397 debug_level=3 reconnect=1 skip_close_notify=1 read_timeout=1000 max_resend=10 \
Manuel Pégourié-Gonnard7a26d732014-10-02 14:50:46 +0200[diff] [blame]10398 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
10399 0 \
10400 -s "a session has been resumed" \
10401 -c "a session has been resumed" \
10402 -s "Extra-header:" \
10403 -c "HTTP/1.0 200 OK"
10404
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10405client_needs_more_time 4
Gilles Peskine111fde42022-02-25 19:51:52 +0100[diff] [blame]10406requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard85beb302014-10-02 17:59:19 +0200[diff] [blame]10407run_test "DTLS proxy: 3d, min handshake, resumption, nbio" \
10408 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10409 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnard85beb302014-10-02 17:59:19 +0200[diff] [blame]10410 psk=abc123 debug_level=3 nbio=2" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10411 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]10412 debug_level=3 reconnect=1 skip_close_notify=1 read_timeout=1000 max_resend=10 \
Manuel Pégourié-Gonnard85beb302014-10-02 17:59:19 +0200[diff] [blame]10413 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8 nbio=2" \
10414 0 \
10415 -s "a session has been resumed" \
10416 -c "a session has been resumed" \
10417 -s "Extra-header:" \
10418 -c "HTTP/1.0 200 OK"
10419
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10420client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]10421requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]10422run_test "DTLS proxy: 3d, min handshake, client-initiated renego" \
Manuel Pégourié-Gonnard1b753f12014-09-25 16:09:36 +0200[diff] [blame]10423 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10424 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]10425 psk=abc123 renegotiation=1 debug_level=2" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10426 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]10427 renegotiate=1 debug_level=2 \
Manuel Pégourié-Gonnard1b753f12014-09-25 16:09:36 +0200[diff] [blame]10428 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
10429 0 \
10430 -c "=> renegotiate" \
10431 -s "=> renegotiate" \
10432 -s "Extra-header:" \
10433 -c "HTTP/1.0 200 OK"
10434
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10435client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]10436requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]10437run_test "DTLS proxy: 3d, min handshake, client-initiated renego, nbio" \
10438 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10439 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]10440 psk=abc123 renegotiation=1 debug_level=2" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10441 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]10442 renegotiate=1 debug_level=2 \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]10443 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
10444 0 \
10445 -c "=> renegotiate" \
10446 -s "=> renegotiate" \
10447 -s "Extra-header:" \
10448 -c "HTTP/1.0 200 OK"
10449
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10450client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]10451requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]10452run_test "DTLS proxy: 3d, min handshake, server-initiated renego" \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]10453 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10454 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]10455 psk=abc123 renegotiate=1 renegotiation=1 exchanges=4 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]10456 debug_level=2" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10457 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]10458 renegotiation=1 exchanges=4 debug_level=2 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]10459 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
10460 0 \
10461 -c "=> renegotiate" \
10462 -s "=> renegotiate" \
10463 -s "Extra-header:" \
10464 -c "HTTP/1.0 200 OK"
10465
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10466client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]10467requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]10468run_test "DTLS proxy: 3d, min handshake, server-initiated renego, nbio" \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]10469 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10470 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]10471 psk=abc123 renegotiate=1 renegotiation=1 exchanges=4 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]10472 debug_level=2 nbio=2" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10473 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=abc123 \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]10474 renegotiation=1 exchanges=4 debug_level=2 nbio=2 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]10475 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
10476 0 \
10477 -c "=> renegotiate" \
10478 -s "=> renegotiate" \
10479 -s "Extra-header:" \
10480 -c "HTTP/1.0 200 OK"
10481
Zhangsen Wang7d0e6582022-06-29 07:33:35 +0000[diff] [blame]10482## The three tests below require 1.1.1a or higher version of openssl, otherwise
10483## it might trigger a bug due to openssl (https://github.com/openssl/openssl/issues/6902)
10484requires_openssl_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10485client_needs_more_time 6
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]10486not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]10487run_test "DTLS proxy: 3d, openssl server" \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]10488 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
Zhangsen Wang7d0e6582022-06-29 07:33:35 +0000[diff] [blame]10489 "$O_NEXT_SRV -dtls1 -mtu 2048" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10490 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 tickets=0" \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]10491 0 \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]10492 -c "HTTP/1.0 200 OK"
10493
Zhangsen Wang7d0e6582022-06-29 07:33:35 +0000[diff] [blame]10494requires_openssl_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10495client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]10496not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]10497run_test "DTLS proxy: 3d, openssl server, fragmentation" \
10498 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
Zhangsen Wang7d0e6582022-06-29 07:33:35 +0000[diff] [blame]10499 "$O_NEXT_SRV -dtls1 -mtu 768" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10500 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 tickets=0" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]10501 0 \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]10502 -c "HTTP/1.0 200 OK"
10503
Zhangsen Wang7d0e6582022-06-29 07:33:35 +0000[diff] [blame]10504requires_openssl_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10505client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]10506not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]10507run_test "DTLS proxy: 3d, openssl server, fragmentation, nbio" \
10508 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
Zhangsen Wang1c981f52022-08-02 06:18:40 +0000[diff] [blame]10509 "$O_NEXT_SRV -dtls1 -mtu 768" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10510 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 nbio=2 tickets=0" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]10511 0 \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]10512 -c "HTTP/1.0 200 OK"
10513
Manuel Pégourié-Gonnard96999962015-02-17 16:02:37 +0000[diff] [blame]10514requires_gnutls
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10515client_needs_more_time 6
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]10516not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]10517run_test "DTLS proxy: 3d, gnutls server" \
10518 -p "$P_PXY drop=5 delay=5 duplicate=5" \
10519 "$G_SRV -u --mtu 2048 -a" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10520 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]10521 0 \
10522 -s "Extra-header:" \
10523 -c "Extra-header:"
10524
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]10525requires_gnutls_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10526client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]10527not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]10528run_test "DTLS proxy: 3d, gnutls server, fragmentation" \
10529 -p "$P_PXY drop=5 delay=5 duplicate=5" \
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]10530 "$G_NEXT_SRV -u --mtu 512" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10531 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]10532 0 \
10533 -s "Extra-header:" \
10534 -c "Extra-header:"
10535
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]10536requires_gnutls_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]10537client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]10538not_with_valgrind # risk of non-mbedtls peer timing out
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]10539run_test "DTLS proxy: 3d, gnutls server, fragmentation, nbio" \
10540 -p "$P_PXY drop=5 delay=5 duplicate=5" \
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]10541 "$G_NEXT_SRV -u --mtu 512" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]10542 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 nbio=2" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]10543 0 \
10544 -s "Extra-header:" \
10545 -c "Extra-header:"
10546
Ron Eldorf75e2522019-05-14 20:38:49 +0300[diff] [blame]10547requires_config_enabled MBEDTLS_SSL_EXPORT_KEYS
10548run_test "export keys functionality" \
10549 "$P_SRV eap_tls=1 debug_level=3" \
10550 "$P_CLI eap_tls=1 debug_level=3" \
10551 0 \
10552 -s "exported maclen is " \
10553 -s "exported keylen is " \
10554 -s "exported ivlen is " \
10555 -c "exported maclen is " \
10556 -c "exported keylen is " \
Ron Eldor65d8c262019-06-04 13:05:36 +0300[diff] [blame]10557 -c "exported ivlen is " \
10558 -c "EAP-TLS key material is:"\
10559 -s "EAP-TLS key material is:"\
10560 -c "EAP-TLS IV is:" \
10561 -s "EAP-TLS IV is:"
Ron Eldorf75e2522019-05-14 20:38:49 +0300[diff] [blame]10562
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]10563# Test heap memory usage after handshake
10564requires_config_enabled MBEDTLS_MEMORY_DEBUG
10565requires_config_enabled MBEDTLS_MEMORY_BUFFER_ALLOC_C
10566requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanoa49124e2021-07-08 15:56:33 +0100[diff] [blame]10567requires_max_content_len 16384
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]10568run_tests_memory_after_hanshake
10569
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]10570# Final report
10571
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]10572echo "------------------------------------------------------------------------"
10573
10574if [ $FAILS = 0 ]; then
Manuel Pégourié-Gonnardf46f1282014-12-11 11:51:28 +0100[diff] [blame]10575 printf "PASSED"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]10576else
Manuel Pégourié-Gonnardf46f1282014-12-11 11:51:28 +0100[diff] [blame]10577 printf "FAILED"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]10578fi
Manuel Pégourié-Gonnard72e51ee2014-08-31 10:22:11 +0200[diff] [blame]10579PASSES=$(( $TESTS - $FAILS ))
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]10580echo " ($PASSES / $TESTS tests ($SKIPS skipped))"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]10581
Tom Cosgrovec1ae9f92023-01-13 12:13:41 +0000[diff] [blame]10582if [ $FAILS -gt 255 ]; then
10583 # Clamp at 255 as caller gets exit code & 0xFF
10584 # (so 256 would be 0, or success, etc)
10585 FAILS=255
10586fi
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]10587exit $FAILS