TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / a442aea2be3697ea31b55b17e3e1da2c183ec544 / . / tests / ssl-opt.sh
blob: 654a2cb1009909afdfbdfdea47fb752a73952e06 [file] [log] [blame]
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1#!/bin/sh
2
Simon Butcher58eddef2016-05-19 23:43:11 +0100[diff] [blame]3# ssl-opt.sh
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]4#
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]5# Copyright The Mbed TLS Contributors
Dave Rodgman16799db2023-11-02 19:47:20 +0000[diff] [blame]6# SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
Bence Szépkútic7da1fe2020-05-26 01:54:15 +0200[diff] [blame]7#
Simon Butcher58eddef2016-05-19 23:43:11 +0100[diff] [blame]8# Purpose
9#
10# Executes tests to prove various TLS/SSL options and extensions.
11#
12# The goal is not to cover every ciphersuite/version, but instead to cover
13# specific options (max fragment length, truncated hmac, etc) or procedures
14# (session resumption from cache or ticket, renego, etc).
15#
16# The tests assume a build with default options, with exceptions expressed
17# with a dependency. The tests focus on functionality and do not consider
18# performance.
19#
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]20
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]21set -u
22
Jaeden Amero6e70eb22019-07-03 13:51:04 +0100[diff] [blame]23# Limit the size of each log to 10 GiB, in case of failures with this script
24# where it may output seemingly unlimited length error logs.
25ulimit -f 20971520
26
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]27ORIGINAL_PWD=$PWD
28if ! cd "$(dirname "$0")"; then
29 exit 125
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]30fi
31
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]32DATA_FILES_PATH=../framework/data_files
33
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]34# default values, can be overridden by the environment
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]35: ${P_SRV:=../programs/ssl/ssl_server2}
36: ${P_CLI:=../programs/ssl/ssl_client2}
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]37: ${P_PXY:=../programs/test/udp_proxy}
Jerry Yud04fd352021-12-06 16:52:57 +0800[diff] [blame]38: ${P_QUERY:=../programs/test/query_compile_time_config}
Manuel Pégourié-Gonnardc5722462022-12-19 11:42:12 +0100[diff] [blame]39: ${OPENSSL:=openssl}
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]40: ${GNUTLS_CLI:=gnutls-cli}
41: ${GNUTLS_SERV:=gnutls-serv}
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]42: ${PERL:=perl}
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]43
Manuel Pégourié-Gonnardc5722462022-12-19 11:42:12 +0100[diff] [blame]44# The OPENSSL variable used to be OPENSSL_CMD for historical reasons.
45# To help the migration, error out if the old variable is set,
46# but only if it has a different value than the new one.
47if [ "${OPENSSL_CMD+set}" = set ]; then
48 # the variable is set, we can now check its value
49 if [ "$OPENSSL_CMD" != "$OPENSSL" ]; then
50 echo "Please use OPENSSL instead of OPENSSL_CMD." >&2
51 exit 125
52 fi
53fi
54
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]55guess_config_name() {
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]56 if git diff --quiet ../include/mbedtls/mbedtls_config.h 2>/dev/null; then
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]57 echo "default"
58 else
59 echo "unknown"
60 fi
61}
62: ${MBEDTLS_TEST_OUTCOME_FILE=}
63: ${MBEDTLS_TEST_CONFIGURATION:="$(guess_config_name)"}
64: ${MBEDTLS_TEST_PLATFORM:="$(uname -s | tr -c \\n0-9A-Za-z _)-$(uname -m | tr -c \\n0-9A-Za-z _)"}
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]65: ${EARLY_DATA_INPUT:="$DATA_FILES_PATH/tls13_early_data.txt"}
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]66
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]67O_SRV="$OPENSSL s_server -www -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key"
Manuel Pégourié-Gonnardc5722462022-12-19 11:42:12 +0100[diff] [blame]68O_CLI="echo 'GET / HTTP/1.0' | $OPENSSL s_client"
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]69G_SRV="$GNUTLS_SERV --x509certfile $DATA_FILES_PATH/server5.crt --x509keyfile $DATA_FILES_PATH/server5.key"
70G_CLI="echo 'GET / HTTP/1.0' | $GNUTLS_CLI --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt"
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]71
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]72# alternative versions of OpenSSL and GnuTLS (no default path)
73
Gilles Peskinef9c798c2024-04-29 17:46:24 +0200[diff] [blame]74# If $OPENSSL is at least 1.1.1, use it as OPENSSL_NEXT as well.
75if [ -z "${OPENSSL_NEXT:-}" ]; then
76 case $($OPENSSL version) in
77 OpenSSL\ 1.1.[1-9]*) OPENSSL_NEXT=$OPENSSL;;
78 OpenSSL\ [3-9]*) OPENSSL_NEXT=$OPENSSL;;
79 esac
80fi
81
82# If $GNUTLS_CLI is at least 3.7, use it as GNUTLS_NEXT_CLI as well.
83if [ -z "${GNUTLS_NEXT_CLI:-}" ]; then
84 case $($GNUTLS_CLI --version) in
85 gnutls-cli\ 3.[1-9][0-9]*) GNUTLS_NEXT_CLI=$GNUTLS_CLI;;
86 gnutls-cli\ 3.[7-9].*) GNUTLS_NEXT_CLI=$GNUTLS_CLI;;
87 gnutls-cli\ [4-9]*) GNUTLS_NEXT_CLI=$GNUTLS_CLI;;
88 esac
89fi
90
91# If $GNUTLS_SERV is at least 3.7, use it as GNUTLS_NEXT_SERV as well.
92if [ -z "${GNUTLS_NEXT_SERV:-}" ]; then
93 case $($GNUTLS_SERV --version) in
94 gnutls-cli\ 3.[1-9][0-9]*) GNUTLS_NEXT_SERV=$GNUTLS_SERV;;
95 gnutls-cli\ 3.[7-9].*) GNUTLS_NEXT_SERV=$GNUTLS_SERV;;
96 gnutls-cli\ [4-9]*) GNUTLS_NEXT_SERV=$GNUTLS_SERV;;
97 esac
98fi
99
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]100if [ -n "${OPENSSL_NEXT:-}" ]; then
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]101 O_NEXT_SRV="$OPENSSL_NEXT s_server -www -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key"
102 O_NEXT_SRV_EARLY_DATA="$OPENSSL_NEXT s_server -early_data -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key"
Jerry Yu305bfc32021-11-24 16:04:47 +0800[diff] [blame]103 O_NEXT_SRV_NO_CERT="$OPENSSL_NEXT s_server -www "
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]104 O_NEXT_CLI="echo 'GET / HTTP/1.0' | $OPENSSL_NEXT s_client -CAfile $DATA_FILES_PATH/test-ca_cat12.crt"
XiaokangQiand5d5b602022-05-23 09:16:20 +0000[diff] [blame]105 O_NEXT_CLI_NO_CERT="echo 'GET / HTTP/1.0' | $OPENSSL_NEXT s_client"
Minos Galanakis27988882025-03-11 17:29:33 +0000[diff] [blame]106 O_NEXT_CLI_RENEGOTIATE="echo 'R' | $OPENSSL_NEXT s_client -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key"
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]107else
108 O_NEXT_SRV=false
Jerry Yu305bfc32021-11-24 16:04:47 +0800[diff] [blame]109 O_NEXT_SRV_NO_CERT=false
Xiaokang Qianb0c32d82022-11-02 10:51:13 +0000[diff] [blame]110 O_NEXT_SRV_EARLY_DATA=false
XiaokangQianb1847a22022-06-08 07:49:31 +0000[diff] [blame]111 O_NEXT_CLI_NO_CERT=false
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]112 O_NEXT_CLI=false
Minos Galanakisc4595a42025-02-12 18:23:09 +0000[diff] [blame]113 O_NEXT_CLI_RENEGOTIATE=false
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]114fi
115
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]116if [ -n "${GNUTLS_NEXT_SERV:-}" ]; then
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]117 G_NEXT_SRV="$GNUTLS_NEXT_SERV --x509certfile $DATA_FILES_PATH/server5.crt --x509keyfile $DATA_FILES_PATH/server5.key"
Jerry Yu305bfc32021-11-24 16:04:47 +0800[diff] [blame]118 G_NEXT_SRV_NO_CERT="$GNUTLS_NEXT_SERV"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]119else
120 G_NEXT_SRV=false
Jerry Yu305bfc32021-11-24 16:04:47 +0800[diff] [blame]121 G_NEXT_SRV_NO_CERT=false
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]122fi
123
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]124if [ -n "${GNUTLS_NEXT_CLI:-}" ]; then
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]125 G_NEXT_CLI="echo 'GET / HTTP/1.0' | $GNUTLS_NEXT_CLI --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt"
XiaokangQiand5d5b602022-05-23 09:16:20 +0000[diff] [blame]126 G_NEXT_CLI_NO_CERT="echo 'GET / HTTP/1.0' | $GNUTLS_NEXT_CLI"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]127else
128 G_NEXT_CLI=false
XiaokangQianfb1a3fe2022-06-09 06:37:33 +0000[diff] [blame]129 G_NEXT_CLI_NO_CERT=false
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]130fi
131
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]132TESTS=0
133FAILS=0
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]134SKIPS=0
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]135
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]136CONFIG_H='../include/mbedtls/mbedtls_config.h'
Manuel Pégourié-Gonnard83d8c732014-04-07 13:24:21 +0200[diff] [blame]137
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]138MEMCHECK=0
Manuel Pégourié-Gonnard417d46c2014-03-13 19:17:53 +0100[diff] [blame]139FILTER='.*'
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]140EXCLUDE='^$'
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]141
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]142SHOW_TEST_NUMBER=0
Tomás González24552ff2023-08-17 15:10:03 +0100[diff] [blame]143LIST_TESTS=0
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]144RUN_TEST_NUMBER=''
Jerry Yu50d07bd2023-11-06 10:49:01 +0800[diff] [blame]145RUN_TEST_SUITE=''
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]146
Gilles Peskinec75048c2024-05-17 11:55:15 +0200[diff] [blame]147MIN_TESTS=1
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]148PRESERVE_LOGS=0
149
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]150# Pick a "unique" server port in the range 10000-19999, and a proxy
151# port which is this plus 10000. Each port number may be independently
152# overridden by a command line option.
153SRV_PORT=$(($$ % 10000 + 10000))
154PXY_PORT=$((SRV_PORT + 10000))
155
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]156print_usage() {
157 echo "Usage: $0 [options]"
Manuel Pégourié-Gonnardf46f1282014-12-11 11:51:28 +0100[diff] [blame]158 printf " -h|--help\tPrint this help.\n"
159 printf " -m|--memcheck\tCheck memory leaks and errors.\n"
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]160 printf " -f|--filter\tOnly matching tests are executed (substring or BRE)\n"
161 printf " -e|--exclude\tMatching tests are excluded (substring or BRE)\n"
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]162 printf " -n|--number\tExecute only numbered test (comma-separated, e.g. '245,256')\n"
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]163 printf " -s|--show-numbers\tShow test numbers in front of test names\n"
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]164 printf " -p|--preserve-logs\tPreserve logs of successful tests as well\n"
Tomás González12787c92023-09-04 10:26:00 +0100[diff] [blame]165 printf " --list-test-cases\tList all potential test cases (No Execution)\n"
Gilles Peskinec75048c2024-05-17 11:55:15 +0200[diff] [blame]166 printf " --min \tMinimum number of non-skipped tests (default 1)\n"
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]167 printf " --outcome-file\tFile where test outcomes are written\n"
168 printf " \t(default: \$MBEDTLS_TEST_OUTCOME_FILE, none if empty)\n"
169 printf " --port \tTCP/UDP port (default: randomish 1xxxx)\n"
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]170 printf " --proxy-port\tTCP/UDP proxy port (default: randomish 2xxxx)\n"
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]171 printf " --seed \tInteger seed value to use for this test run\n"
Jerry Yu50d07bd2023-11-06 10:49:01 +0800[diff] [blame]172 printf " --test-suite\tOnly matching test suites are executed\n"
173 printf " \t(comma-separated, e.g. 'ssl-opt,tls13-compat')\n\n"
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]174}
175
176get_options() {
177 while [ $# -gt 0 ]; do
178 case "$1" in
Manuel Pégourié-Gonnard417d46c2014-03-13 19:17:53 +0100[diff] [blame]179 -f|--filter)
180 shift; FILTER=$1
181 ;;
182 -e|--exclude)
183 shift; EXCLUDE=$1
184 ;;
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]185 -m|--memcheck)
186 MEMCHECK=1
187 ;;
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]188 -n|--number)
189 shift; RUN_TEST_NUMBER=$1
190 ;;
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]191 -s|--show-numbers)
192 SHOW_TEST_NUMBER=1
193 ;;
Tomás González4a86da22023-09-01 17:41:16 +0100[diff] [blame]194 -l|--list-test-cases)
Tomás González24552ff2023-08-17 15:10:03 +0100[diff] [blame]195 LIST_TESTS=1
196 ;;
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]197 -p|--preserve-logs)
198 PRESERVE_LOGS=1
199 ;;
Gilles Peskinec75048c2024-05-17 11:55:15 +0200[diff] [blame]200 --min)
201 shift; MIN_TESTS=$1
202 ;;
Yanray Wang5b33f642023-02-28 11:56:59 +0800[diff] [blame]203 --outcome-file)
204 shift; MBEDTLS_TEST_OUTCOME_FILE=$1
205 ;;
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]206 --port)
207 shift; SRV_PORT=$1
208 ;;
209 --proxy-port)
210 shift; PXY_PORT=$1
211 ;;
Andres AGf04f54d2016-10-10 15:46:20 +0100[diff] [blame]212 --seed)
213 shift; SEED="$1"
214 ;;
Jerry Yu50d07bd2023-11-06 10:49:01 +0800[diff] [blame]215 --test-suite)
216 shift; RUN_TEST_SUITE="$1"
217 ;;
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]218 -h|--help)
219 print_usage
220 exit 0
221 ;;
222 *)
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]223 echo "Unknown argument: '$1'"
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]224 print_usage
225 exit 1
226 ;;
227 esac
228 shift
229 done
230}
231
Tomás González0e8a08a2023-08-23 15:29:57 +0100[diff] [blame]232get_options "$@"
233
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]234# Read boolean configuration options from mbedtls_config.h for easy and quick
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]235# testing. Skip non-boolean options (with something other than spaces
236# and a comment after "#define SYMBOL"). The variable contains a
237# space-separated list of symbols.
Tomás Gonzálezf162b4f2023-08-23 15:31:12 +0100[diff] [blame]238if [ "$LIST_TESTS" -eq 0 ];then
239 CONFIGS_ENABLED=" $(echo `$P_QUERY -l` )"
240else
Tomás Gonzálezbe2c66e2023-09-01 10:34:49 +0100[diff] [blame]241 P_QUERY=":"
Tomás Gonzálezf162b4f2023-08-23 15:31:12 +0100[diff] [blame]242 CONFIGS_ENABLED=""
243fi
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]244# Skip next test; use this macro to skip tests which are legitimate
245# in theory and expected to be re-introduced at some point, but
246# aren't expected to succeed at the moment due to problems outside
247# our control (such as bugs in other TLS implementations).
248skip_next_test() {
249 SKIP_NEXT="YES"
250}
251
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]252# Check if the required configuration ($1) is enabled
253is_config_enabled()
254{
255 case $CONFIGS_ENABLED in
256 *" $1"[\ =]*) return 0;;
257 *) return 1;;
258 esac
259}
260
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]261# skip next test if the flag is not enabled in mbedtls_config.h
Manuel Pégourié-Gonnard988209f2015-03-24 10:43:55 +0100[diff] [blame]262requires_config_enabled() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]263 case $CONFIGS_ENABLED in
Jerry Yu2e8b0012021-12-10 20:29:02 +0800[diff] [blame]264 *" $1"[\ =]*) :;;
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]265 *) SKIP_NEXT="YES";;
266 esac
Manuel Pégourié-Gonnard988209f2015-03-24 10:43:55 +0100[diff] [blame]267}
268
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]269# skip next test if the flag is enabled in mbedtls_config.h
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]270requires_config_disabled() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]271 case $CONFIGS_ENABLED in
Jerry Yu2e8b0012021-12-10 20:29:02 +0800[diff] [blame]272 *" $1"[\ =]*) SKIP_NEXT="YES";;
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]273 esac
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]274}
275
Jerry Yu2fcb0562022-07-27 17:30:49 +0800[diff] [blame]276requires_all_configs_enabled() {
Gilles Peskine0bc57292024-09-06 14:43:17 +0200[diff] [blame]277 for x in "$@"; do
278 if ! is_config_enabled "$x"; then
279 SKIP_NEXT="YES"
280 return
281 fi
282 done
Jerry Yu2fcb0562022-07-27 17:30:49 +0800[diff] [blame]283}
284
285requires_all_configs_disabled() {
Gilles Peskine0bc57292024-09-06 14:43:17 +0200[diff] [blame]286 for x in "$@"; do
287 if is_config_enabled "$x"; then
288 SKIP_NEXT="YES"
289 return
290 fi
291 done
Jerry Yu2fcb0562022-07-27 17:30:49 +0800[diff] [blame]292}
293
294requires_any_configs_enabled() {
Gilles Peskine0bc57292024-09-06 14:43:17 +0200[diff] [blame]295 for x in "$@"; do
296 if is_config_enabled "$x"; then
297 return
298 fi
299 done
300 SKIP_NEXT="YES"
Jerry Yu2fcb0562022-07-27 17:30:49 +0800[diff] [blame]301}
302
303requires_any_configs_disabled() {
Gilles Peskine0bc57292024-09-06 14:43:17 +0200[diff] [blame]304 for x in "$@"; do
305 if ! is_config_enabled "$x"; then
306 return
307 fi
308 done
309 SKIP_NEXT="YES"
Jerry Yu2fcb0562022-07-27 17:30:49 +0800[diff] [blame]310}
311
Ronald Cron454eb912022-10-21 08:56:04 +0200[diff] [blame]312TLS1_2_KEY_EXCHANGES_WITH_CERT="MBEDTLS_KEY_EXCHANGE_RSA_ENABLED \
Ronald Cronbc5adf42022-10-04 11:06:14 +0200[diff] [blame]313 MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED \
314 MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
315 MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED \
316 MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
317 MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED \
318 MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED"
319
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]320TLS1_2_KEY_EXCHANGES_WITH_ECDSA_CERT="MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED \
321 MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED"
322
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]323TLS1_2_KEY_EXCHANGES_WITH_CERT_WO_ECDH="MBEDTLS_KEY_EXCHANGE_RSA_ENABLED \
324 MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED \
325 MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
326 MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED \
327 MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED"
328
Gilles Peskine0a9f9d62024-09-06 15:38:47 +0200[diff] [blame]329requires_certificate_authentication () {
Gilles Peskinecfbaffd2024-09-10 12:24:23 +0200[diff] [blame]330 if is_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]331 then
Gilles Peskinecfbaffd2024-09-10 12:24:23 +0200[diff] [blame]332 # TLS 1.3 is negotiated by default, so check whether it supports
333 # certificate-based authentication.
334 requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
335 else # Only TLS 1.2 is enabled.
Valerio Settie7f896d2023-03-13 13:55:28 +0100[diff] [blame]336 requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]337 fi
Ronald Cronbc5adf42022-10-04 11:06:14 +0200[diff] [blame]338}
339
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]340get_config_value_or_default() {
Andres Amaya Garcia3169dc02018-10-16 21:29:07 +0100[diff] [blame]341 # This function uses the query_config command line option to query the
342 # required Mbed TLS compile time configuration from the ssl_server2
343 # program. The command will always return a success value if the
344 # configuration is defined and the value will be printed to stdout.
345 #
346 # Note that if the configuration is not defined or is defined to nothing,
347 # the output of this function will be an empty string.
Tomás González06956a12023-08-23 15:46:20 +0100[diff] [blame]348 if [ "$LIST_TESTS" -eq 0 ];then
349 ${P_SRV} "query_config=${1}"
350 else
351 echo "1"
352 fi
353
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]354}
355
356requires_config_value_at_least() {
Andres Amaya Garcia3169dc02018-10-16 21:29:07 +0100[diff] [blame]357 VAL="$( get_config_value_or_default "$1" )"
358 if [ -z "$VAL" ]; then
359 # Should never happen
360 echo "Mbed TLS configuration $1 is not defined"
361 exit 1
362 elif [ "$VAL" -lt "$2" ]; then
Hanno Becker5cd017f2018-08-24 14:40:12 +0100[diff] [blame]363 SKIP_NEXT="YES"
364 fi
365}
366
367requires_config_value_at_most() {
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]368 VAL=$( get_config_value_or_default "$1" )
Andres Amaya Garcia3169dc02018-10-16 21:29:07 +0100[diff] [blame]369 if [ -z "$VAL" ]; then
370 # Should never happen
371 echo "Mbed TLS configuration $1 is not defined"
372 exit 1
373 elif [ "$VAL" -gt "$2" ]; then
Hanno Becker5cd017f2018-08-24 14:40:12 +0100[diff] [blame]374 SKIP_NEXT="YES"
375 fi
376}
377
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]378requires_config_value_equals() {
379 VAL=$( get_config_value_or_default "$1" )
380 if [ -z "$VAL" ]; then
381 # Should never happen
382 echo "Mbed TLS configuration $1 is not defined"
383 exit 1
384 elif [ "$VAL" -ne "$2" ]; then
385 SKIP_NEXT="YES"
386 fi
387}
388
Gilles Peskinec9126732022-04-08 19:33:07 +0200[diff] [blame]389# Require Mbed TLS to support the given protocol version.
390#
391# Inputs:
392# * $1: protocol version in mbedtls syntax (argument to force_version=)
393requires_protocol_version() {
394 # Support for DTLS is detected separately in detect_dtls().
395 case "$1" in
396 tls12|dtls12) requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2;;
397 tls13|dtls13) requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3;;
398 *) echo "Unknown required protocol version: $1"; exit 1;;
399 esac
400}
401
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]402# Space-separated list of ciphersuites supported by this build of
403# Mbed TLS.
Ronald Cron5b73de82023-11-28 15:49:25 +0100[diff] [blame]404P_CIPHERSUITES=""
405if [ "$LIST_TESTS" -eq 0 ]; then
406 P_CIPHERSUITES=" $($P_CLI help_ciphersuites 2>/dev/null |
407 grep 'TLS-\|TLS1-3' |
408 tr -s ' \n' ' ')"
409
410 if [ -z "${P_CIPHERSUITES# }" ]; then
411 echo >&2 "$0: fatal error: no cipher suites found!"
412 exit 125
413 fi
414fi
415
Hanno Becker9d76d562018-11-16 17:27:29 +0000[diff] [blame]416requires_ciphersuite_enabled() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]417 case $P_CIPHERSUITES in
418 *" $1 "*) :;;
419 *) SKIP_NEXT="YES";;
420 esac
Hanno Becker9d76d562018-11-16 17:27:29 +0000[diff] [blame]421}
422
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]423requires_cipher_enabled() {
424 KEY_TYPE=$1
425 MODE=${2:-}
426 if is_config_enabled MBEDTLS_USE_PSA_CRYPTO; then
427 case "$KEY_TYPE" in
428 CHACHA20)
429 requires_config_enabled PSA_WANT_ALG_CHACHA20_POLY1305
430 requires_config_enabled PSA_WANT_KEY_TYPE_CHACHA20
431 ;;
432 *)
433 requires_config_enabled PSA_WANT_ALG_${MODE}
434 requires_config_enabled PSA_WANT_KEY_TYPE_${KEY_TYPE}
435 ;;
436 esac
437 else
438 case "$KEY_TYPE" in
439 CHACHA20)
440 requires_config_enabled MBEDTLS_CHACHA20_C
441 requires_config_enabled MBEDTLS_CHACHAPOLY_C
442 ;;
443 *)
444 requires_config_enabled MBEDTLS_${MODE}_C
445 requires_config_enabled MBEDTLS_${KEY_TYPE}_C
446 ;;
447 esac
448 fi
449}
450
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]451# Automatically detect required features based on command line parameters.
452# Parameters are:
453# - $1 = command line (call to a TLS client or server program)
454# - $2 = client/server
455# - $3 = TLS version (TLS12 or TLS13)
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]456# - $4 = Use an external tool without ECDH support
457# - $5 = run test options
Gilles Peskineb898b3d2022-04-08 19:26:26 +0200[diff] [blame]458detect_required_features() {
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]459 CMD_LINE=$1
460 ROLE=$2
461 TLS_VERSION=$3
462 EXT_WO_ECDH=$4
463 TEST_OPTIONS=${5:-}
464
465 case "$CMD_LINE" in
Gilles Peskinec9126732022-04-08 19:33:07 +0200[diff] [blame]466 *\ force_version=*)
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]467 tmp="${CMD_LINE##*\ force_version=}"
Gilles Peskinec9126732022-04-08 19:33:07 +0200[diff] [blame]468 tmp="${tmp%%[!-0-9A-Z_a-z]*}"
469 requires_protocol_version "$tmp";;
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]470 esac
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]471
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]472 case "$CMD_LINE" in
Gilles Peskineb898b3d2022-04-08 19:26:26 +0200[diff] [blame]473 *\ force_ciphersuite=*)
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]474 tmp="${CMD_LINE##*\ force_ciphersuite=}"
Gilles Peskineb898b3d2022-04-08 19:26:26 +0200[diff] [blame]475 tmp="${tmp%%[!-0-9A-Z_a-z]*}"
476 requires_ciphersuite_enabled "$tmp";;
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]477 esac
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]478
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]479 case " $CMD_LINE " in
Gilles Peskine740b7342022-04-08 19:29:27 +0200[diff] [blame]480 *[-_\ =]tickets=[^0]*)
481 requires_config_enabled MBEDTLS_SSL_TICKET_C;;
482 esac
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]483 case " $CMD_LINE " in
Gilles Peskine740b7342022-04-08 19:29:27 +0200[diff] [blame]484 *[-_\ =]alpn=*)
485 requires_config_enabled MBEDTLS_SSL_ALPN;;
486 esac
487
Gilles Peskine6eff90f2024-09-06 15:34:59 +0200[diff] [blame]488 case " $CMD_LINE " in
489 *\ auth_mode=*|*[-_\ =]crt[_=]*)
Gilles Peskined57212e2024-09-10 12:06:33 +0200[diff] [blame]490 # The test case involves certificates (crt), or a relevant
491 # aspect of it is the (certificate-based) authentication mode.
Gilles Peskine6eff90f2024-09-06 15:34:59 +0200[diff] [blame]492 requires_certificate_authentication;;
493 esac
494
Gilles Peskinee6b82502024-09-04 16:06:10 +0200[diff] [blame]495 case " $CMD_LINE " in
Gilles Peskine48e4ff92025-02-13 21:23:22 +0100[diff] [blame]496 *\ ca_callback=1\ *)
497 requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK;;
498 esac
499
500 case " $CMD_LINE " in
Gilles Peskinef8b373e2024-09-04 16:07:56 +0200[diff] [blame]501 *"programs/ssl/dtls_client "*|\
Gilles Peskinee6b82502024-09-04 16:06:10 +0200[diff] [blame]502 *"programs/ssl/ssl_client1 "*)
503 requires_config_enabled MBEDTLS_CTR_DRBG_C
504 requires_config_enabled MBEDTLS_ENTROPY_C
505 requires_config_enabled MBEDTLS_PEM_PARSE_C
506 requires_config_enabled MBEDTLS_SSL_CLI_C
507 requires_certificate_authentication
508 ;;
Gilles Peskine9d104e92024-09-04 16:51:50 +0200[diff] [blame]509 *"programs/ssl/dtls_server "*|\
Gilles Peskine2a0af352024-09-04 17:47:14 +0200[diff] [blame]510 *"programs/ssl/ssl_fork_server "*|\
Gilles Peskinefab60992024-09-04 16:31:06 +0200[diff] [blame]511 *"programs/ssl/ssl_pthread_server "*|\
Gilles Peskine37c37492024-09-04 16:30:32 +0200[diff] [blame]512 *"programs/ssl/ssl_server "*)
513 requires_config_enabled MBEDTLS_CTR_DRBG_C
514 requires_config_enabled MBEDTLS_ENTROPY_C
515 requires_config_enabled MBEDTLS_PEM_PARSE_C
516 requires_config_enabled MBEDTLS_SSL_SRV_C
517 requires_certificate_authentication
Gilles Peskine5bf54ca2024-09-13 23:08:48 +0200[diff] [blame]518 # The actual minimum depends on the configuration since it's
519 # mostly about the certificate size.
520 # In config-suite-b.h, for the test certificates (server5.crt),
521 # 1024 is not enough.
522 requires_config_value_at_least MBEDTLS_SSL_OUT_CONTENT_LEN 2000
Gilles Peskine37c37492024-09-04 16:30:32 +0200[diff] [blame]523 ;;
Gilles Peskinee6b82502024-09-04 16:06:10 +0200[diff] [blame]524 esac
525
Gilles Peskinefab60992024-09-04 16:31:06 +0200[diff] [blame]526 case " $CMD_LINE " in
527 *"programs/ssl/ssl_pthread_server "*)
528 requires_config_enabled MBEDTLS_THREADING_PTHREAD;;
529 esac
530
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]531 case "$CMD_LINE" in
Gilles Peskine5c766dc2024-09-06 15:35:58 +0200[diff] [blame]532 *[-_\ =]psk*|*[-_\ =]PSK*) :;; # No certificate requirement with PSK
Gilles Peskine1bc28fe2024-04-26 21:28:49 +0200[diff] [blame]533 */server5*|\
534 */server7*|\
535 */dir-maxpath*)
Gilles Peskine6eff90f2024-09-06 15:34:59 +0200[diff] [blame]536 requires_certificate_authentication
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]537 if [ "$TLS_VERSION" = "TLS13" ]; then
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]538 # In case of TLS13 the support for ECDSA is enough
539 requires_pk_alg "ECDSA"
540 else
541 # For TLS12 requirements are different between server and client
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]542 if [ "$ROLE" = "server" ]; then
Valerio Setti194e2bd2023-03-02 17:18:10 +0100[diff] [blame]543 # If the server uses "server5*" certificates, then an ECDSA based
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]544 # key exchange is required. However gnutls also does not
545 # support ECDH, so this limit the choice to ECDHE-ECDSA
546 if [ "$EXT_WO_ECDH" = "yes" ]; then
547 requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
548 else
549 requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_ECDSA_CERT
550 fi
551 elif [ "$ROLE" = "client" ]; then
552 # On the client side it is enough to have any certificate
553 # based authentication together with support for ECDSA.
554 # Of course the GnuTLS limitation mentioned above applies
555 # also here.
556 if [ "$EXT_WO_ECDH" = "yes" ]; then
557 requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT_WO_ECDH
558 else
559 requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
560 fi
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]561 requires_pk_alg "ECDSA"
562 fi
563 fi
564 ;;
565 esac
566
Valerio Setti4f577f32023-07-31 18:58:25 +0200[diff] [blame]567 case "$CMD_LINE" in
Gilles Peskine5c766dc2024-09-06 15:35:58 +0200[diff] [blame]568 *[-_\ =]psk*|*[-_\ =]PSK*) :;; # No certificate requirement with PSK
Gilles Peskine121a7bf2024-04-29 16:03:02 +0200[diff] [blame]569 */server1*|\
Gilles Peskine1bc28fe2024-04-26 21:28:49 +0200[diff] [blame]570 */server2*|\
571 */server7*)
Gilles Peskine6eff90f2024-09-06 15:34:59 +0200[diff] [blame]572 requires_certificate_authentication
Gilles Peskine121a7bf2024-04-29 16:03:02 +0200[diff] [blame]573 # Certificates with an RSA key. The algorithm requirement is
574 # some subset of {PKCS#1v1.5 encryption, PKCS#1v1.5 signature,
575 # PSS signature}. We can't easily tell which subset works, and
576 # we aren't currently running ssl-opt.sh in configurations
577 # where partial RSA support is a problem, so generically, we
578 # just require RSA and it works out for our tests so far.
Valerio Setti4f577f32023-07-31 18:58:25 +0200[diff] [blame]579 requires_config_enabled "MBEDTLS_RSA_C"
580 esac
581
Gilles Peskineb898b3d2022-04-08 19:26:26 +0200[diff] [blame]582 unset tmp
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]583}
584
Gilles Peskine6e86e542022-02-25 19:52:52 +0100[diff] [blame]585adapt_cmd_for_psk () {
586 case "$2" in
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]587 *openssl*s_server*) s='-psk 73776f726466697368 -nocert';;
588 *openssl*) s='-psk 73776f726466697368';;
Gilles Peskine9cd58482024-09-06 15:27:57 +0200[diff] [blame]589 *gnutls-cli*) s='--pskusername=Client_identity --pskkey=73776f726466697368';;
590 *gnutls-serv*) s='--pskpasswd=../framework/data_files/simplepass.psk';;
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]591 *) s='psk=73776f726466697368';;
Gilles Peskine6e86e542022-02-25 19:52:52 +0100[diff] [blame]592 esac
593 eval $1='"$2 $s"'
594 unset s
595}
596
597# maybe_adapt_for_psk [RUN_TEST_OPTION...]
598# If running in a PSK-only build, maybe adapt the test to use a pre-shared key.
599#
600# If not running in a PSK-only build, do nothing.
601# If the test looks like it doesn't use a pre-shared key but can run with a
602# pre-shared key, pass a pre-shared key. If the test looks like it can't run
603# with a pre-shared key, skip it. If the test looks like it's already using
604# a pre-shared key, do nothing.
605#
Gilles Peskine59601d72022-04-05 22:00:17 +0200[diff] [blame]606# This code does not consider builds with ECDHE-PSK or RSA-PSK.
Gilles Peskine6e86e542022-02-25 19:52:52 +0100[diff] [blame]607#
608# Inputs:
609# * $CLI_CMD, $SRV_CMD, $PXY_CMD: client/server/proxy commands.
610# * $PSK_ONLY: YES if running in a PSK-only build (no asymmetric key exchanges).
611# * "$@": options passed to run_test.
612#
613# Outputs:
614# * $CLI_CMD, $SRV_CMD: may be modified to add PSK-relevant arguments.
615# * $SKIP_NEXT: set to YES if the test can't run with PSK.
616maybe_adapt_for_psk() {
617 if [ "$PSK_ONLY" != "YES" ]; then
618 return
619 fi
620 if [ "$SKIP_NEXT" = "YES" ]; then
621 return
622 fi
623 case "$CLI_CMD $SRV_CMD" in
624 *[-_\ =]psk*|*[-_\ =]PSK*)
625 return;;
626 *force_ciphersuite*)
627 # The test case forces a non-PSK cipher suite. In some cases, a
628 # PSK cipher suite could be substituted, but we're not ready for
629 # that yet.
630 SKIP_NEXT="YES"
631 return;;
632 *\ auth_mode=*|*[-_\ =]crt[_=]*)
633 # The test case involves certificates. PSK won't do.
634 SKIP_NEXT="YES"
635 return;;
636 esac
637 adapt_cmd_for_psk CLI_CMD "$CLI_CMD"
638 adapt_cmd_for_psk SRV_CMD "$SRV_CMD"
639}
640
Gilles Peskined98b3632024-09-06 19:08:41 +0200[diff] [blame]641# PSK_PRESENT="YES" if at least one protocol versions supports at least
642# one PSK key exchange mode.
Gilles Peskinebbdc1a32024-09-06 15:38:20 +0200[diff] [blame]643PSK_PRESENT="NO"
Gilles Peskined98b3632024-09-06 19:08:41 +0200[diff] [blame]644# PSK_ONLY="YES" if all the available key exchange modes are PSK-based
645# (pure-PSK or PSK-ephemeral, possibly both).
Gilles Peskinebbdc1a32024-09-06 15:38:20 +0200[diff] [blame]646PSK_ONLY=""
647for c in $CONFIGS_ENABLED; do
648 case $c in
649 MBEDTLS_KEY_EXCHANGE_PSK_ENABLED) PSK_PRESENT="YES";;
Gilles Peskine19c60d22024-09-09 11:24:17 +0200[diff] [blame]650 MBEDTLS_KEY_EXCHANGE_*_PSK_ENABLED) PSK_PRESENT="YES";;
Gilles Peskinebbdc1a32024-09-06 15:38:20 +0200[diff] [blame]651 MBEDTLS_KEY_EXCHANGE_*_ENABLED) PSK_ONLY="NO";;
652 MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED) PSK_PRESENT="YES";;
Gilles Peskined98b3632024-09-06 19:08:41 +0200[diff] [blame]653 MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_*_ENABLED) PSK_PRESENT="YES";;
Gilles Peskinebbdc1a32024-09-06 15:38:20 +0200[diff] [blame]654 MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_*_ENABLED) PSK_ONLY="NO";;
655 esac
656done
Gilles Peskine5838a642024-09-09 10:57:01 +0200[diff] [blame]657# At this stage, $PSK_ONLY is empty if we haven't detected a non-PSK
658# key exchange, i.e. if we're in a PSK-only build or a build with no
659# key exchanges at all. We avoid triggering PSK-only adaptation code in
Gilles Peskined57212e2024-09-10 12:06:33 +0200[diff] [blame]660# the edge case of no key exchanges.
Gilles Peskinebbdc1a32024-09-06 15:38:20 +0200[diff] [blame]661: ${PSK_ONLY:=$PSK_PRESENT}
662unset c
Gilles Peskine6e86e542022-02-25 19:52:52 +0100[diff] [blame]663
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]664HAS_ALG_MD5="NO"
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]665HAS_ALG_SHA_1="NO"
666HAS_ALG_SHA_224="NO"
667HAS_ALG_SHA_256="NO"
668HAS_ALG_SHA_384="NO"
669HAS_ALG_SHA_512="NO"
670
671check_for_hash_alg()
672{
673 CURR_ALG="INVALID";
674 USE_PSA="NO"
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]675 if is_config_enabled "MBEDTLS_USE_PSA_CRYPTO"; then
676 USE_PSA="YES";
677 fi
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]678 if [ $USE_PSA = "YES" ]; then
679 CURR_ALG=PSA_WANT_ALG_${1}
680 else
681 CURR_ALG=MBEDTLS_${1}_C
682 # Remove the second underscore to match MBEDTLS_* naming convention
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]683 # MD5 is an exception to this convention
684 if [ "${1}" != "MD5" ]; then
685 CURR_ALG=$(echo "$CURR_ALG" | sed 's/_//2')
686 fi
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]687 fi
688
689 case $CONFIGS_ENABLED in
690 *" $CURR_ALG"[\ =]*)
691 return 0
692 ;;
693 *) :;;
694 esac
695 return 1
696}
697
698populate_enabled_hash_algs()
699{
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]700 for hash_alg in SHA_1 SHA_224 SHA_256 SHA_384 SHA_512 MD5; do
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]701 if check_for_hash_alg "$hash_alg"; then
702 hash_alg_variable=HAS_ALG_${hash_alg}
703 eval ${hash_alg_variable}=YES
704 fi
Valerio Settie7f896d2023-03-13 13:55:28 +0100[diff] [blame]705 done
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]706}
707
708# skip next test if the given hash alg is not supported
709requires_hash_alg() {
710 HASH_DEFINE="Invalid"
711 HAS_HASH_ALG="NO"
712 case $1 in
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]713 MD5):;;
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]714 SHA_1):;;
715 SHA_224):;;
716 SHA_256):;;
717 SHA_384):;;
718 SHA_512):;;
719 *)
720 echo "Unsupported hash alg - $1"
721 exit 1
722 ;;
723 esac
724
725 HASH_DEFINE=HAS_ALG_${1}
726 eval "HAS_HASH_ALG=\${${HASH_DEFINE}}"
727 if [ "$HAS_HASH_ALG" = "NO" ]
728 then
729 SKIP_NEXT="YES"
730 fi
731}
732
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]733# Skip next test if the given pk alg is not enabled
734requires_pk_alg() {
735 case $1 in
736 ECDSA)
737 if is_config_enabled MBEDTLS_USE_PSA_CRYPTO; then
738 requires_config_enabled PSA_WANT_ALG_ECDSA
739 else
740 requires_config_enabled MBEDTLS_ECDSA_C
741 fi
742 ;;
743 *)
744 echo "Unknown/unimplemented case $1 in requires_pk_alg"
745 exit 1
746 ;;
747 esac
748}
749
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]750# skip next test if OpenSSL doesn't support FALLBACK_SCSV
751requires_openssl_with_fallback_scsv() {
752 if [ -z "${OPENSSL_HAS_FBSCSV:-}" ]; then
Manuel Pégourié-Gonnardc5722462022-12-19 11:42:12 +0100[diff] [blame]753 if $OPENSSL s_client -help 2>&1 | grep fallback_scsv >/dev/null
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]754 then
755 OPENSSL_HAS_FBSCSV="YES"
756 else
757 OPENSSL_HAS_FBSCSV="NO"
758 fi
759 fi
760 if [ "$OPENSSL_HAS_FBSCSV" = "NO" ]; then
761 SKIP_NEXT="YES"
762 fi
763}
764
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]765# skip next test if either IN_CONTENT_LEN or MAX_CONTENT_LEN are below a value
766requires_max_content_len() {
767 requires_config_value_at_least "MBEDTLS_SSL_IN_CONTENT_LEN" $1
768 requires_config_value_at_least "MBEDTLS_SSL_OUT_CONTENT_LEN" $1
769}
770
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]771# skip next test if GnuTLS isn't available
772requires_gnutls() {
773 if [ -z "${GNUTLS_AVAILABLE:-}" ]; then
Manuel Pégourié-Gonnard03db6b02015-06-26 15:45:30 +0200[diff] [blame]774 if ( which "$GNUTLS_CLI" && which "$GNUTLS_SERV" ) >/dev/null 2>&1; then
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]775 GNUTLS_AVAILABLE="YES"
776 else
777 GNUTLS_AVAILABLE="NO"
778 fi
779 fi
780 if [ "$GNUTLS_AVAILABLE" = "NO" ]; then
781 SKIP_NEXT="YES"
782 fi
783}
784
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]785# skip next test if GnuTLS-next isn't available
786requires_gnutls_next() {
787 if [ -z "${GNUTLS_NEXT_AVAILABLE:-}" ]; then
788 if ( which "${GNUTLS_NEXT_CLI:-}" && which "${GNUTLS_NEXT_SERV:-}" ) >/dev/null 2>&1; then
789 GNUTLS_NEXT_AVAILABLE="YES"
790 else
791 GNUTLS_NEXT_AVAILABLE="NO"
792 fi
793 fi
794 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
795 SKIP_NEXT="YES"
796 fi
797}
798
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]799requires_openssl_next() {
800 if [ -z "${OPENSSL_NEXT_AVAILABLE:-}" ]; then
801 if which "${OPENSSL_NEXT:-}" >/dev/null 2>&1; then
802 OPENSSL_NEXT_AVAILABLE="YES"
803 else
804 OPENSSL_NEXT_AVAILABLE="NO"
805 fi
806 fi
807 if [ "$OPENSSL_NEXT_AVAILABLE" = "NO" ]; then
808 SKIP_NEXT="YES"
809 fi
810}
811
Przemek Stekiel422ab1f2023-06-14 11:04:28 +0200[diff] [blame]812# skip next test if openssl version is lower than 3.0
813requires_openssl_3_x() {
814 requires_openssl_next
815 if [ "$OPENSSL_NEXT_AVAILABLE" = "NO" ]; then
816 OPENSSL_3_X_AVAILABLE="NO"
817 fi
818 if [ -z "${OPENSSL_3_X_AVAILABLE:-}" ]; then
Przemek Stekiela53dca12023-06-14 20:53:09 +0200[diff] [blame]819 if $OPENSSL_NEXT version 2>&1 | grep "OpenSSL 3." >/dev/null
Przemek Stekiel422ab1f2023-06-14 11:04:28 +0200[diff] [blame]820 then
821 OPENSSL_3_X_AVAILABLE="YES"
822 else
823 OPENSSL_3_X_AVAILABLE="NO"
824 fi
825 fi
826 if [ "$OPENSSL_3_X_AVAILABLE" = "NO" ]; then
827 SKIP_NEXT="YES"
828 fi
829}
830
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]831# skip next test if openssl does not support ffdh keys
832requires_openssl_tls1_3_with_ffdh() {
833 requires_openssl_3_x
834}
835
Przemek Stekiel7dda2712023-06-27 14:43:33 +0200[diff] [blame]836# skip next test if openssl cannot handle ephemeral key exchange
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]837requires_openssl_tls1_3_with_compatible_ephemeral() {
838 requires_openssl_next
839
840 if !(is_config_enabled "PSA_WANT_ALG_ECDH"); then
841 requires_openssl_tls1_3_with_ffdh
842 fi
843}
844
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]845# skip next test if tls1_3 is not available
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]846requires_openssl_tls1_3() {
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]847 requires_openssl_next
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]848 if [ "$OPENSSL_NEXT_AVAILABLE" = "NO" ]; then
849 OPENSSL_TLS1_3_AVAILABLE="NO"
850 fi
851 if [ -z "${OPENSSL_TLS1_3_AVAILABLE:-}" ]; then
852 if $OPENSSL_NEXT s_client -help 2>&1 | grep tls1_3 >/dev/null
853 then
854 OPENSSL_TLS1_3_AVAILABLE="YES"
855 else
856 OPENSSL_TLS1_3_AVAILABLE="NO"
857 fi
858 fi
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]859 if [ "$OPENSSL_TLS1_3_AVAILABLE" = "NO" ]; then
860 SKIP_NEXT="YES"
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]861 fi
862}
863
Gilles Peskine5838a642024-09-09 10:57:01 +0200[diff] [blame]864# OpenSSL servers forbid client renegotiation by default since OpenSSL 3.0.
865# Older versions always allow it and have no command-line option.
Gilles Peskineed8cc462024-09-06 13:52:14 +0200[diff] [blame]866OPENSSL_S_SERVER_CLIENT_RENEGOTIATION=
867case $($OPENSSL s_server -help 2>&1) in
868 *-client_renegotiation*)
869 OPENSSL_S_SERVER_CLIENT_RENEGOTIATION=-client_renegotiation;;
870esac
871
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]872# skip next test if tls1_3 is not available
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]873requires_gnutls_tls1_3() {
874 requires_gnutls_next
875 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
876 GNUTLS_TLS1_3_AVAILABLE="NO"
877 fi
878 if [ -z "${GNUTLS_TLS1_3_AVAILABLE:-}" ]; then
879 if $GNUTLS_NEXT_CLI -l 2>&1 | grep VERS-TLS1.3 >/dev/null
880 then
881 GNUTLS_TLS1_3_AVAILABLE="YES"
882 else
883 GNUTLS_TLS1_3_AVAILABLE="NO"
884 fi
885 fi
886 if [ "$GNUTLS_TLS1_3_AVAILABLE" = "NO" ]; then
887 SKIP_NEXT="YES"
888 fi
889}
890
Jerry Yu75261df2021-09-02 17:40:08 +0800[diff] [blame]891# Check %NO_TICKETS option
Jerry Yub12d81d2021-08-17 10:56:08 +0800[diff] [blame]892requires_gnutls_next_no_ticket() {
893 requires_gnutls_next
894 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
895 GNUTLS_NO_TICKETS_AVAILABLE="NO"
896 fi
897 if [ -z "${GNUTLS_NO_TICKETS_AVAILABLE:-}" ]; then
898 if $GNUTLS_NEXT_CLI --priority-list 2>&1 | grep NO_TICKETS >/dev/null
899 then
900 GNUTLS_NO_TICKETS_AVAILABLE="YES"
901 else
902 GNUTLS_NO_TICKETS_AVAILABLE="NO"
903 fi
904 fi
905 if [ "$GNUTLS_NO_TICKETS_AVAILABLE" = "NO" ]; then
906 SKIP_NEXT="YES"
907 fi
908}
909
Jerry Yu75261df2021-09-02 17:40:08 +0800[diff] [blame]910# Check %DISABLE_TLS13_COMPAT_MODE option
Jerry Yub12d81d2021-08-17 10:56:08 +0800[diff] [blame]911requires_gnutls_next_disable_tls13_compat() {
912 requires_gnutls_next
913 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
914 GNUTLS_DISABLE_TLS13_COMPAT_MODE_AVAILABLE="NO"
915 fi
916 if [ -z "${GNUTLS_DISABLE_TLS13_COMPAT_MODE_AVAILABLE:-}" ]; then
917 if $GNUTLS_NEXT_CLI --priority-list 2>&1 | grep DISABLE_TLS13_COMPAT_MODE >/dev/null
918 then
919 GNUTLS_DISABLE_TLS13_COMPAT_MODE_AVAILABLE="YES"
920 else
921 GNUTLS_DISABLE_TLS13_COMPAT_MODE_AVAILABLE="NO"
922 fi
923 fi
924 if [ "$GNUTLS_DISABLE_TLS13_COMPAT_MODE_AVAILABLE" = "NO" ]; then
925 SKIP_NEXT="YES"
926 fi
927}
928
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]929# skip next test if GnuTLS does not support the record size limit extension
930requires_gnutls_record_size_limit() {
931 requires_gnutls_next
932 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
933 GNUTLS_RECORD_SIZE_LIMIT_AVAILABLE="NO"
934 else
935 GNUTLS_RECORD_SIZE_LIMIT_AVAILABLE="YES"
936 fi
937 if [ "$GNUTLS_RECORD_SIZE_LIMIT_AVAILABLE" = "NO" ]; then
938 SKIP_NEXT="YES"
939 fi
940}
941
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]942# skip next test if IPv6 isn't available on this host
943requires_ipv6() {
944 if [ -z "${HAS_IPV6:-}" ]; then
945 $P_SRV server_addr='::1' > $SRV_OUT 2>&1 &
946 SRV_PID=$!
947 sleep 1
948 kill $SRV_PID >/dev/null 2>&1
949 if grep "NET - Binding of the socket failed" $SRV_OUT >/dev/null; then
950 HAS_IPV6="NO"
951 else
952 HAS_IPV6="YES"
953 fi
954 rm -r $SRV_OUT
955 fi
956
957 if [ "$HAS_IPV6" = "NO" ]; then
958 SKIP_NEXT="YES"
959 fi
960}
961
Andrzej Kurekb4593462018-10-11 08:43:30 -0400[diff] [blame]962# skip next test if it's i686 or uname is not available
963requires_not_i686() {
964 if [ -z "${IS_I686:-}" ]; then
965 IS_I686="YES"
966 if which "uname" >/dev/null 2>&1; then
967 if [ -z "$(uname -a | grep i686)" ]; then
968 IS_I686="NO"
969 fi
970 fi
971 fi
972 if [ "$IS_I686" = "YES" ]; then
973 SKIP_NEXT="YES"
974 fi
975}
976
David Horstmann95d516f2021-05-04 18:36:56 +0100[diff] [blame]977MAX_CONTENT_LEN=16384
Yuto Takano2be6f1a2021-06-22 07:16:40 +0100[diff] [blame]978MAX_IN_LEN=$( get_config_value_or_default "MBEDTLS_SSL_IN_CONTENT_LEN" )
979MAX_OUT_LEN=$( get_config_value_or_default "MBEDTLS_SSL_OUT_CONTENT_LEN" )
Tomás González06956a12023-08-23 15:46:20 +0100[diff] [blame]980if [ "$LIST_TESTS" -eq 0 ];then
981 # Calculate the input & output maximum content lengths set in the config
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]982
Tomás González06956a12023-08-23 15:46:20 +0100[diff] [blame]983 # Calculate the maximum content length that fits both
984 if [ "$MAX_IN_LEN" -lt "$MAX_CONTENT_LEN" ]; then
985 MAX_CONTENT_LEN="$MAX_IN_LEN"
986 fi
987 if [ "$MAX_OUT_LEN" -lt "$MAX_CONTENT_LEN" ]; then
988 MAX_CONTENT_LEN="$MAX_OUT_LEN"
989 fi
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]990fi
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]991# skip the next test if the SSL output buffer is less than 16KB
992requires_full_size_output_buffer() {
993 if [ "$MAX_OUT_LEN" -ne 16384 ]; then
994 SKIP_NEXT="YES"
995 fi
996}
997
Gilles Peskine6bdebfe2024-10-31 18:52:40 +0100[diff] [blame]998# Skip the next test if called by all.sh in a component with MSan
999# (which we also call MemSan) or Valgrind.
1000not_with_msan_or_valgrind() {
1001 case "_${MBEDTLS_TEST_CONFIGURATION:-}_" in
1002 *_msan_*|*_memsan_*|*_valgrind_*) SKIP_NEXT="YES";;
1003 esac
1004}
1005
Manuel Pégourié-Gonnard76fe9e42014-09-24 15:17:31 +0200[diff] [blame]1006# skip the next test if valgrind is in use
1007not_with_valgrind() {
1008 if [ "$MEMCHECK" -gt 0 ]; then
1009 SKIP_NEXT="YES"
1010 fi
1011}
1012
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]1013# skip the next test if valgrind is NOT in use
1014only_with_valgrind() {
1015 if [ "$MEMCHECK" -eq 0 ]; then
1016 SKIP_NEXT="YES"
1017 fi
1018}
1019
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]1020# multiply the client timeout delay by the given factor for the next test
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]1021client_needs_more_time() {
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]1022 CLI_DELAY_FACTOR=$1
1023}
1024
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]1025# wait for the given seconds after the client finished in the next test
1026server_needs_more_time() {
1027 SRV_DELAY_SECONDS=$1
1028}
1029
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1030# print_name <name>
1031print_name() {
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]1032 TESTS=$(( $TESTS + 1 ))
1033 LINE=""
1034
1035 if [ "$SHOW_TEST_NUMBER" -gt 0 ]; then
1036 LINE="$TESTS "
1037 fi
1038
1039 LINE="$LINE$1"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]1040
Tomás González378e3642023-09-04 10:41:37 +0100[diff] [blame]1041 printf "%s " "$LINE"
1042 LEN=$(( 72 - `echo "$LINE" | wc -c` ))
1043 for i in `seq 1 $LEN`; do printf '.'; done
1044 printf ' '
1045
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1046}
1047
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1048# record_outcome <outcome> [<failure-reason>]
1049# The test name must be in $NAME.
Gilles Peskine5eb2b022022-01-07 15:47:02 +0100[diff] [blame]1050# Use $TEST_SUITE_NAME as the test suite name if set.
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1051record_outcome() {
1052 echo "$1"
1053 if [ -n "$MBEDTLS_TEST_OUTCOME_FILE" ]; then
1054 printf '%s;%s;%s;%s;%s;%s\n' \
1055 "$MBEDTLS_TEST_PLATFORM" "$MBEDTLS_TEST_CONFIGURATION" \
Jerry Yu9e47b262023-11-06 10:52:01 +0800[diff] [blame]1056 "${TEST_SUITE_NAME:-ssl-opt}" "$NAME" \
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1057 "$1" "${2-}" \
1058 >>"$MBEDTLS_TEST_OUTCOME_FILE"
1059 fi
1060}
Gilles Peskine5eb2b022022-01-07 15:47:02 +0100[diff] [blame]1061unset TEST_SUITE_NAME
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1062
Gilles Peskine788ad332021-10-20 14:17:02 +0200[diff] [blame]1063# True if the presence of the given pattern in a log definitely indicates
1064# that the test has failed. False if the presence is inconclusive.
1065#
1066# Inputs:
1067# * $1: pattern found in the logs
1068# * $TIMES_LEFT: >0 if retrying is an option
1069#
1070# Outputs:
1071# * $outcome: set to a retry reason if the pattern is inconclusive,
1072# unchanged otherwise.
1073# * Return value: 1 if the pattern is inconclusive,
1074# 0 if the failure is definitive.
1075log_pattern_presence_is_conclusive() {
1076 # If we've run out of attempts, then don't retry no matter what.
1077 if [ $TIMES_LEFT -eq 0 ]; then
1078 return 0
1079 fi
1080 case $1 in
1081 "resend")
1082 # An undesired resend may have been caused by the OS dropping or
1083 # delaying a packet at an inopportune time.
1084 outcome="RETRY(resend)"
1085 return 1;;
1086 esac
1087}
1088
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1089# fail <message>
1090fail() {
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1091 record_outcome "FAIL" "$1"
Manuel Pégourié-Gonnard3eec6042014-02-27 15:37:24 +0100[diff] [blame]1092 echo " ! $1"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]1093
Manuel Pégourié-Gonnardc2b00922014-08-31 16:46:04 +0200[diff] [blame]1094 mv $SRV_OUT o-srv-${TESTS}.log
1095 mv $CLI_OUT o-cli-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1096 if [ -n "$PXY_CMD" ]; then
1097 mv $PXY_OUT o-pxy-${TESTS}.log
1098 fi
1099 echo " ! outputs saved to o-XXX-${TESTS}.log"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]1100
Manuel Pégourié-Gonnard3f3302f2020-06-08 11:49:05 +0200[diff] [blame]1101 if [ "${LOG_FAILURE_ON_STDOUT:-0}" != 0 ]; then
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]1102 echo " ! server output:"
1103 cat o-srv-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1104 echo " ! ========================================================"
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]1105 echo " ! client output:"
1106 cat o-cli-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1107 if [ -n "$PXY_CMD" ]; then
1108 echo " ! ========================================================"
1109 echo " ! proxy output:"
1110 cat o-pxy-${TESTS}.log
1111 fi
1112 echo ""
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]1113 fi
1114
Manuel Pégourié-Gonnard72e51ee2014-08-31 10:22:11 +0200[diff] [blame]1115 FAILS=$(( $FAILS + 1 ))
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1116}
1117
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1118# is_polar <cmd_line>
1119is_polar() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]1120 case "$1" in
1121 *ssl_client2*) true;;
1122 *ssl_server2*) true;;
1123 *) false;;
1124 esac
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1125}
1126
Manuel Pégourié-Gonnardfa60f122014-09-26 16:07:29 +0200[diff] [blame]1127# openssl s_server doesn't have -www with DTLS
1128check_osrv_dtls() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]1129 case "$SRV_CMD" in
1130 *s_server*-dtls*)
1131 NEEDS_INPUT=1
1132 SRV_CMD="$( echo $SRV_CMD | sed s/-www// )";;
1133 *) NEEDS_INPUT=0;;
1134 esac
Manuel Pégourié-Gonnardfa60f122014-09-26 16:07:29 +0200[diff] [blame]1135}
1136
1137# provide input to commands that need it
1138provide_input() {
1139 if [ $NEEDS_INPUT -eq 0 ]; then
1140 return
1141 fi
1142
1143 while true; do
1144 echo "HTTP/1.0 200 OK"
1145 sleep 1
1146 done
1147}
1148
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1149# has_mem_err <log_file_name>
1150has_mem_err() {
1151 if ( grep -F 'All heap blocks were freed -- no leaks are possible' "$1" &&
1152 grep -F 'ERROR SUMMARY: 0 errors from 0 contexts' "$1" ) > /dev/null
1153 then
1154 return 1 # false: does not have errors
1155 else
1156 return 0 # true: has errors
1157 fi
1158}
1159
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]1160# Wait for process $2 named $3 to be listening on port $1. Print error to $4.
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1161if type lsof >/dev/null 2>/dev/null; then
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]1162 wait_app_start() {
Paul Elliotte05e1262021-10-20 15:59:33 +0100[diff] [blame]1163 newline='
1164'
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1165 START_TIME=$(date +%s)
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1166 if [ "$DTLS" -eq 1 ]; then
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1167 proto=UDP
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1168 else
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1169 proto=TCP
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1170 fi
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1171 # Make a tight loop, server normally takes less than 1s to start.
Paul Elliott58ed8a72021-10-19 17:56:39 +0100[diff] [blame]1172 while true; do
Gilles Peskine5bd0b512022-04-15 22:53:18 +0200[diff] [blame]1173 SERVER_PIDS=$(lsof -a -n -b -i "$proto:$1" -t)
Paul Elliotte05e1262021-10-20 15:59:33 +0100[diff] [blame]1174 # When we use a proxy, it will be listening on the same port we
1175 # are checking for as well as the server and lsof will list both.
Paul Elliotte05e1262021-10-20 15:59:33 +0100[diff] [blame]1176 case ${newline}${SERVER_PIDS}${newline} in
Gilles Peskine5bd0b512022-04-15 22:53:18 +0200[diff] [blame]1177 *${newline}${2}${newline}*) break;;
Paul Elliotte05e1262021-10-20 15:59:33 +0100[diff] [blame]1178 esac
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1179 if [ $(( $(date +%s) - $START_TIME )) -gt $DOG_DELAY ]; then
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]1180 echo "$3 START TIMEOUT"
1181 echo "$3 START TIMEOUT" >> $4
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1182 break
1183 fi
1184 # Linux and *BSD support decimal arguments to sleep. On other
1185 # OSes this may be a tight loop.
1186 sleep 0.1 2>/dev/null || true
1187 done
1188 }
1189else
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]1190 echo "Warning: lsof not available, wait_app_start = sleep"
1191 wait_app_start() {
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]1192 sleep "$START_DELAY"
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1193 }
1194fi
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]1195
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]1196# Wait for server process $2 to be listening on port $1.
1197wait_server_start() {
1198 wait_app_start $1 $2 "SERVER" $SRV_OUT
1199}
1200
1201# Wait for proxy process $2 to be listening on port $1.
1202wait_proxy_start() {
1203 wait_app_start $1 $2 "PROXY" $PXY_OUT
1204}
1205
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1206# Given the client or server debug output, parse the unix timestamp that is
Andres Amaya Garcia3b1bdff2017-09-14 12:41:29 +0100[diff] [blame]1207# included in the first 4 bytes of the random bytes and check that it's within
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1208# acceptable bounds
1209check_server_hello_time() {
1210 # Extract the time from the debug (lvl 3) output of the client
Andres Amaya Garcia67d8da52017-09-15 15:49:24 +0100[diff] [blame]1211 SERVER_HELLO_TIME="$(sed -n 's/.*server hello, current time: //p' < "$1")"
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1212 # Get the Unix timestamp for now
1213 CUR_TIME=$(date +'%s')
1214 THRESHOLD_IN_SECS=300
1215
1216 # Check if the ServerHello time was printed
1217 if [ -z "$SERVER_HELLO_TIME" ]; then
1218 return 1
1219 fi
1220
1221 # Check the time in ServerHello is within acceptable bounds
1222 if [ $SERVER_HELLO_TIME -lt $(( $CUR_TIME - $THRESHOLD_IN_SECS )) ]; then
1223 # The time in ServerHello is at least 5 minutes before now
1224 return 1
1225 elif [ $SERVER_HELLO_TIME -gt $(( $CUR_TIME + $THRESHOLD_IN_SECS )) ]; then
Andres Amaya Garcia3b1bdff2017-09-14 12:41:29 +0100[diff] [blame]1226 # The time in ServerHello is at least 5 minutes later than now
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1227 return 1
1228 else
1229 return 0
1230 fi
1231}
1232
Max Fillinger9c3a7ba2024-11-11 17:50:34 +0100[diff] [blame]1233# Extract the exported key from the output.
1234get_exported_key() {
1235 OUTPUT="$1"
1236 EXPORTED_KEY1=$(sed -n '/Exporting key of length 20 with label ".*": /s/.*: //p' $OUTPUT)
1237}
1238
1239# Check that the exported key from the output matches the one obtained in get_exported_key().
1240check_exported_key() {
1241 OUTPUT="$1"
1242 EXPORTED_KEY2=$(sed -n '/Exporting key of length 20 with label ".*": /s/.*: //p' $OUTPUT)
1243 test "$EXPORTED_KEY1" = "$EXPORTED_KEY2"
1244}
1245
1246# Check that the exported key from the output matches the one obtained in get_exported_key().
1247check_exported_key_openssl() {
1248 OUTPUT="$1"
1249 EXPORTED_KEY2=0x$(sed -n '/Keying material: /s/.*: //p' $OUTPUT)
1250 test "$EXPORTED_KEY1" = "$EXPORTED_KEY2"
1251}
1252
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1253# Get handshake memory usage from server or client output and put it into the variable specified by the first argument
1254handshake_memory_get() {
1255 OUTPUT_VARIABLE="$1"
1256 OUTPUT_FILE="$2"
1257
1258 # Get memory usage from a pattern like "Heap memory usage after handshake: 23112 bytes. Peak memory usage was 33112"
1259 MEM_USAGE=$(sed -n 's/.*Heap memory usage after handshake: //p' < "$OUTPUT_FILE" | grep -o "[0-9]*" | head -1)
1260
1261 # Check if memory usage was read
1262 if [ -z "$MEM_USAGE" ]; then
1263 echo "Error: Can not read the value of handshake memory usage"
1264 return 1
1265 else
1266 eval "$OUTPUT_VARIABLE=$MEM_USAGE"
1267 return 0
1268 fi
1269}
1270
1271# Get handshake memory usage from server or client output and check if this value
1272# is not higher than the maximum given by the first argument
1273handshake_memory_check() {
1274 MAX_MEMORY="$1"
1275 OUTPUT_FILE="$2"
1276
1277 # Get memory usage
1278 if ! handshake_memory_get "MEMORY_USAGE" "$OUTPUT_FILE"; then
1279 return 1
1280 fi
1281
1282 # Check if memory usage is below max value
1283 if [ "$MEMORY_USAGE" -gt "$MAX_MEMORY" ]; then
1284 echo "\nFailed: Handshake memory usage was $MEMORY_USAGE bytes," \
1285 "but should be below $MAX_MEMORY bytes"
1286 return 1
1287 else
1288 return 0
1289 fi
1290}
1291
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]1292# wait for client to terminate and set CLI_EXIT
1293# must be called right after starting the client
1294wait_client_done() {
1295 CLI_PID=$!
1296
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]1297 CLI_DELAY=$(( $DOG_DELAY * $CLI_DELAY_FACTOR ))
1298 CLI_DELAY_FACTOR=1
1299
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]1300 ( sleep $CLI_DELAY; echo "===CLIENT_TIMEOUT===" >> $CLI_OUT; kill $CLI_PID ) &
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]1301 DOG_PID=$!
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]1302
Jerry Yud2d41102022-07-26 17:34:42 +0800[diff] [blame]1303 # For Ubuntu 22.04, `Terminated` message is outputed by wait command.
1304 # To remove it from stdout, redirect stdout/stderr to CLI_OUT
1305 wait $CLI_PID >> $CLI_OUT 2>&1
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]1306 CLI_EXIT=$?
1307
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]1308 kill $DOG_PID >/dev/null 2>&1
Jerry Yufe52e552022-07-09 04:23:43 +0000[diff] [blame]1309 wait $DOG_PID >> $CLI_OUT 2>&1
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]1310
1311 echo "EXIT: $CLI_EXIT" >> $CLI_OUT
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]1312
1313 sleep $SRV_DELAY_SECONDS
1314 SRV_DELAY_SECONDS=0
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]1315}
1316
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1317# check if the given command uses dtls and sets global variable DTLS
1318detect_dtls() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]1319 case "$1" in
Gilles Peskine9d104e92024-09-04 16:51:50 +0200[diff] [blame]1320 *dtls=1*|*-dtls*|*-u*|*/dtls_*) DTLS=1;;
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]1321 *) DTLS=0;;
1322 esac
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1323}
1324
Dave Rodgman0279c2f2021-02-10 12:45:41 +0000[diff] [blame]1325# check if the given command uses gnutls and sets global variable CMD_IS_GNUTLS
1326is_gnutls() {
1327 case "$1" in
1328 *gnutls-cli*)
1329 CMD_IS_GNUTLS=1
1330 ;;
1331 *gnutls-serv*)
1332 CMD_IS_GNUTLS=1
1333 ;;
1334 *)
1335 CMD_IS_GNUTLS=0
1336 ;;
1337 esac
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1338}
1339
Valerio Setti2f8eb622023-03-16 13:04:44 +0100[diff] [blame]1340# Some external tools (gnutls or openssl) might not have support for static ECDH
1341# and this limit the tests that can be run with them. This function checks server
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]1342# and client command lines, given as input, to verify if the current test
1343# is using one of these tools.
1344use_ext_tool_without_ecdh_support() {
1345 case "$1" in
1346 *$GNUTLS_SERV*|\
1347 *${GNUTLS_NEXT_SERV:-"gnutls-serv-dummy"}*|\
1348 *${OPENSSL_NEXT:-"openssl-dummy"}*)
1349 echo "yes"
1350 return;;
1351 esac
1352 case "$2" in
1353 *$GNUTLS_CLI*|\
1354 *${GNUTLS_NEXT_CLI:-"gnutls-cli-dummy"}*|\
1355 *${OPENSSL_NEXT:-"openssl-dummy"}*)
1356 echo "yes"
1357 return;;
1358 esac
1359 echo "no"
1360}
1361
Jerry Yuf467d462022-11-07 13:12:44 +0800[diff] [blame]1362# Generate random psk_list argument for ssl_server2
1363get_srv_psk_list ()
1364{
1365 case $(( TESTS % 3 )) in
1366 0) echo "psk_list=abc,dead,def,beef,Client_identity,6162636465666768696a6b6c6d6e6f70";;
1367 1) echo "psk_list=abc,dead,Client_identity,6162636465666768696a6b6c6d6e6f70,def,beef";;
1368 2) echo "psk_list=Client_identity,6162636465666768696a6b6c6d6e6f70,abc,dead,def,beef";;
1369 esac
1370}
1371
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1372# Determine what calc_verify trace is to be expected, if any.
1373#
1374# calc_verify is only called for two things: to calculate the
1375# extended master secret, and to process client authentication.
1376#
1377# Warning: the current implementation assumes that extended_ms is not
1378# disabled on the client or on the server.
1379#
1380# Inputs:
Gilles Peskinec8d242f2022-04-06 22:23:45 +0200[diff] [blame]1381# * $1: the value of the server auth_mode parameter.
1382# 'required' if client authentication is expected,
1383# 'none' or absent if not.
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1384# * $CONFIGS_ENABLED
1385#
1386# Outputs:
1387# * $maybe_calc_verify: set to a trace expected in the debug logs
1388set_maybe_calc_verify() {
1389 maybe_calc_verify=
1390 case $CONFIGS_ENABLED in
1391 *\ MBEDTLS_SSL_EXTENDED_MASTER_SECRET\ *) :;;
1392 *)
1393 case ${1-} in
Gilles Peskinec8d242f2022-04-06 22:23:45 +0200[diff] [blame]1394 ''|none) return;;
1395 required) :;;
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1396 *) echo "Bad parameter 1 to set_maybe_calc_verify: $1"; exit 1;;
1397 esac
1398 esac
1399 case $CONFIGS_ENABLED in
1400 *\ MBEDTLS_USE_PSA_CRYPTO\ *) maybe_calc_verify="PSA calc verify";;
1401 *) maybe_calc_verify="<= calc verify";;
1402 esac
1403}
1404
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]1405# Compare file content
1406# Usage: find_in_both pattern file1 file2
1407# extract from file1 the first line matching the pattern
1408# check in file2 that the same line can be found
1409find_in_both() {
1410 srv_pattern=$(grep -m 1 "$1" "$2");
1411 if [ -z "$srv_pattern" ]; then
1412 return 1;
1413 fi
1414
1415 if grep "$srv_pattern" $3 >/dev/null; then :
Johan Pascal10403152020-10-09 20:43:51 +0200[diff] [blame]1416 return 0;
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]1417 else
1418 return 1;
1419 fi
1420}
1421
Jerry Yuc46e9b42021-08-06 11:22:24 +0800[diff] [blame]1422SKIP_HANDSHAKE_CHECK="NO"
1423skip_handshake_stage_check() {
1424 SKIP_HANDSHAKE_CHECK="YES"
1425}
1426
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1427# Analyze the commands that will be used in a test.
1428#
1429# Analyze and possibly instrument $PXY_CMD, $CLI_CMD, $SRV_CMD to pass
1430# extra arguments or go through wrappers.
Gilles Peskine59601d72022-04-05 22:00:17 +0200[diff] [blame]1431#
1432# Inputs:
1433# * $@: supplemental options to run_test() (after the mandatory arguments).
1434# * $CLI_CMD, $PXY_CMD, $SRV_CMD: the client, proxy and server commands.
1435# * $DTLS: 1 if DTLS, otherwise 0.
1436#
1437# Outputs:
1438# * $CLI_CMD, $PXY_CMD, $SRV_CMD: may be tweaked.
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1439analyze_test_commands() {
Gilles Peskinef8b373e2024-09-04 16:07:56 +0200[diff] [blame]1440 # If the test uses DTLS, does not force a specific port, and does not
1441 # specify a custom proxy, add a simple proxy.
1442 # It provides timing info that's useful to debug failures.
1443 if [ "$DTLS" -eq 1 ] &&
1444 [ "$THIS_SRV_PORT" = "$SRV_PORT" ] &&
1445 [ -z "$PXY_CMD" ]
1446 then
Manuel Pégourié-Gonnardf4557862020-06-08 11:40:06 +0200[diff] [blame]1447 PXY_CMD="$P_PXY"
Manuel Pégourié-Gonnard8779e9a2020-07-16 10:19:32 +0200[diff] [blame]1448 case " $SRV_CMD " in
1449 *' server_addr=::1 '*)
1450 PXY_CMD="$PXY_CMD server_addr=::1 listen_addr=::1";;
1451 esac
Manuel Pégourié-Gonnardf4557862020-06-08 11:40:06 +0200[diff] [blame]1452 fi
1453
Dave Rodgman0279c2f2021-02-10 12:45:41 +0000[diff] [blame]1454 # update CMD_IS_GNUTLS variable
1455 is_gnutls "$SRV_CMD"
1456
1457 # if the server uses gnutls but doesn't set priority, explicitly
1458 # set the default priority
1459 if [ "$CMD_IS_GNUTLS" -eq 1 ]; then
1460 case "$SRV_CMD" in
1461 *--priority*) :;;
1462 *) SRV_CMD="$SRV_CMD --priority=NORMAL";;
1463 esac
1464 fi
1465
1466 # update CMD_IS_GNUTLS variable
1467 is_gnutls "$CLI_CMD"
1468
1469 # if the client uses gnutls but doesn't set priority, explicitly
1470 # set the default priority
1471 if [ "$CMD_IS_GNUTLS" -eq 1 ]; then
1472 case "$CLI_CMD" in
1473 *--priority*) :;;
1474 *) CLI_CMD="$CLI_CMD --priority=NORMAL";;
1475 esac
1476 fi
1477
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1478 # fix client port
1479 if [ -n "$PXY_CMD" ]; then
1480 CLI_CMD=$( echo "$CLI_CMD" | sed s/+SRV_PORT/$PXY_PORT/g )
1481 else
Gilles Peskine6c798ef2024-09-04 16:05:11 +0200[diff] [blame]1482 CLI_CMD=$( echo "$CLI_CMD" | sed s/+SRV_PORT/$THIS_SRV_PORT/g )
1483 fi
1484
1485 # If the test forces a specific port and the server is OpenSSL or
1486 # GnuTLS, override its port specification.
1487 if [ "$THIS_SRV_PORT" != "$SRV_PORT" ]; then
1488 case "$SRV_CMD" in
Gilles Peskine8d64fe12024-09-04 23:33:36 +0200[diff] [blame]1489 "$G_SRV"*|"$G_NEXT_SRV"*)
1490 SRV_CMD=$(
1491 printf %s "$SRV_CMD " |
1492 sed -e "s/ -p $SRV_PORT / -p $THIS_SRV_PORT /"
1493 );;
Gilles Peskine6c798ef2024-09-04 16:05:11 +0200[diff] [blame]1494 "$O_SRV"*|"$O_NEXT_SRV"*) SRV_CMD="$SRV_CMD -accept $THIS_SRV_PORT";;
1495 esac
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1496 fi
1497
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1498 # prepend valgrind to our commands if active
1499 if [ "$MEMCHECK" -gt 0 ]; then
1500 if is_polar "$SRV_CMD"; then
1501 SRV_CMD="valgrind --leak-check=full $SRV_CMD"
1502 fi
1503 if is_polar "$CLI_CMD"; then
1504 CLI_CMD="valgrind --leak-check=full $CLI_CMD"
1505 fi
1506 fi
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1507}
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1508
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1509# Check for failure conditions after a test case.
1510#
1511# Inputs from run_test:
1512# * positional parameters: test options (see run_test documentation)
1513# * $CLI_EXIT: client return code
1514# * $CLI_EXPECT: expected client return code
1515# * $SRV_RET: server return code
1516# * $CLI_OUT, $SRV_OUT, $PXY_OUT: files containing client/server/proxy logs
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1517# * $TIMES_LEFT: if nonzero, a RETRY outcome is allowed
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1518#
1519# Outputs:
Gilles Peskinef11d30e2021-10-19 18:00:10 +0200[diff] [blame]1520# * $outcome: one of PASS/RETRY*/FAIL
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1521check_test_failure() {
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1522 outcome=FAIL
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]1523
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1524 if [ $TIMES_LEFT -gt 0 ] &&
1525 grep '===CLIENT_TIMEOUT===' $CLI_OUT >/dev/null
1526 then
Gilles Peskinef11d30e2021-10-19 18:00:10 +0200[diff] [blame]1527 outcome="RETRY(client-timeout)"
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1528 return
1529 fi
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]1530
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1531 # check if the client and server went at least to the handshake stage
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]1532 # (useful to avoid tests with only negative assertions and non-zero
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1533 # expected client exit to incorrectly succeed in case of catastrophic
1534 # failure)
Jerry Yuc46e9b42021-08-06 11:22:24 +0800[diff] [blame]1535 if [ "X$SKIP_HANDSHAKE_CHECK" != "XYES" ]
1536 then
1537 if is_polar "$SRV_CMD"; then
1538 if grep "Performing the SSL/TLS handshake" $SRV_OUT >/dev/null; then :;
1539 else
1540 fail "server or client failed to reach handshake stage"
1541 return
1542 fi
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1543 fi
Jerry Yuc46e9b42021-08-06 11:22:24 +0800[diff] [blame]1544 if is_polar "$CLI_CMD"; then
1545 if grep "Performing the SSL/TLS handshake" $CLI_OUT >/dev/null; then :;
1546 else
1547 fail "server or client failed to reach handshake stage"
1548 return
1549 fi
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1550 fi
1551 fi
1552
Jerry Yuc46e9b42021-08-06 11:22:24 +0800[diff] [blame]1553 SKIP_HANDSHAKE_CHECK="NO"
Gilles Peskineaaf866e2021-02-09 21:01:33 +0100[diff] [blame]1554 # Check server exit code (only for Mbed TLS: GnuTLS and OpenSSL don't
1555 # exit with status 0 when interrupted by a signal, and we don't really
1556 # care anyway), in case e.g. the server reports a memory leak.
1557 if [ $SRV_RET != 0 ] && is_polar "$SRV_CMD"; then
Gilles Peskine7f919de2021-02-02 23:29:03 +0100[diff] [blame]1558 fail "Server exited with status $SRV_RET"
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1559 return
1560 fi
1561
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1562 # check client exit code
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]1563 if [ \( "$CLI_EXPECT" = 0 -a "$CLI_EXIT" != 0 \) -o \
1564 \( "$CLI_EXPECT" != 0 -a "$CLI_EXIT" = 0 \) ]
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1565 then
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1566 fail "bad client exit code (expected $CLI_EXPECT, got $CLI_EXIT)"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1567 return
1568 fi
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1569
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1570 # check other assertions
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]1571 # lines beginning with == are added by valgrind, ignore them
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1572 # lines with 'Serious error when reading debug info', are valgrind issues as well
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1573 while [ $# -gt 0 ]
1574 do
1575 case $1 in
1576 "-s")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1577 if grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then :; else
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1578 fail "pattern '$2' MUST be present in the Server output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1579 return
1580 fi
1581 ;;
1582
1583 "-c")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1584 if grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then :; else
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1585 fail "pattern '$2' MUST be present in the Client output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1586 return
1587 fi
1588 ;;
1589
1590 "-S")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1591 if grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then
Gilles Peskine788ad332021-10-20 14:17:02 +0200[diff] [blame]1592 if log_pattern_presence_is_conclusive "$2"; then
Gilles Peskinef11d30e2021-10-19 18:00:10 +0200[diff] [blame]1593 fail "pattern '$2' MUST NOT be present in the Server output"
1594 fi
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1595 return
1596 fi
1597 ;;
1598
1599 "-C")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1600 if grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then
Gilles Peskine788ad332021-10-20 14:17:02 +0200[diff] [blame]1601 if log_pattern_presence_is_conclusive "$2"; then
Gilles Peskinef11d30e2021-10-19 18:00:10 +0200[diff] [blame]1602 fail "pattern '$2' MUST NOT be present in the Client output"
1603 fi
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1604 return
1605 fi
1606 ;;
1607
1608 # The filtering in the following two options (-u and -U) do the following
1609 # - ignore valgrind output
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]1610 # - filter out everything but lines right after the pattern occurrences
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1611 # - keep one of each non-unique line
1612 # - count how many lines remain
1613 # A line with '--' will remain in the result from previous outputs, so the number of lines in the result will be 1
1614 # if there were no duplicates.
1615 "-U")
1616 if [ $(grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep -A1 "$2" | grep -v "$2" | sort | uniq -d | wc -l) -gt 1 ]; then
1617 fail "lines following pattern '$2' must be unique in Server output"
1618 return
1619 fi
1620 ;;
1621
1622 "-u")
1623 if [ $(grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep -A1 "$2" | grep -v "$2" | sort | uniq -d | wc -l) -gt 1 ]; then
1624 fail "lines following pattern '$2' must be unique in Client output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1625 return
1626 fi
1627 ;;
Andres Amaya Garcia93993de2017-09-06 15:38:07 +0100[diff] [blame]1628 "-F")
1629 if ! $2 "$SRV_OUT"; then
1630 fail "function call to '$2' failed on Server output"
1631 return
1632 fi
1633 ;;
1634 "-f")
1635 if ! $2 "$CLI_OUT"; then
1636 fail "function call to '$2' failed on Client output"
1637 return
1638 fi
1639 ;;
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]1640 "-g")
1641 if ! eval "$2 '$SRV_OUT' '$CLI_OUT'"; then
1642 fail "function call to '$2' failed on Server and Client output"
1643 return
1644 fi
1645 ;;
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1646
1647 *)
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]1648 echo "Unknown test: $1" >&2
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1649 exit 1
1650 esac
1651 shift 2
1652 done
1653
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1654 # check valgrind's results
1655 if [ "$MEMCHECK" -gt 0 ]; then
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1656 if is_polar "$SRV_CMD" && has_mem_err $SRV_OUT; then
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1657 fail "Server has memory errors"
1658 return
1659 fi
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1660 if is_polar "$CLI_CMD" && has_mem_err $CLI_OUT; then
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1661 fail "Client has memory errors"
1662 return
1663 fi
1664 fi
1665
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1666 # if we're here, everything is ok
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1667 outcome=PASS
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1668}
1669
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1670# Run the current test case: start the server and if applicable the proxy, run
1671# the client, wait for all processes to finish or time out.
1672#
1673# Inputs:
1674# * $NAME: test case name
1675# * $CLI_CMD, $SRV_CMD, $PXY_CMD: commands to run
1676# * $CLI_OUT, $SRV_OUT, $PXY_OUT: files to contain client/server/proxy logs
1677#
1678# Outputs:
1679# * $CLI_EXIT: client return code
1680# * $SRV_RET: server return code
1681do_run_test_once() {
1682 # run the commands
1683 if [ -n "$PXY_CMD" ]; then
1684 printf "# %s\n%s\n" "$NAME" "$PXY_CMD" > $PXY_OUT
1685 $PXY_CMD >> $PXY_OUT 2>&1 &
1686 PXY_PID=$!
1687 wait_proxy_start "$PXY_PORT" "$PXY_PID"
1688 fi
1689
1690 check_osrv_dtls
1691 printf '# %s\n%s\n' "$NAME" "$SRV_CMD" > $SRV_OUT
1692 provide_input | $SRV_CMD >> $SRV_OUT 2>&1 &
1693 SRV_PID=$!
Gilles Peskine6c798ef2024-09-04 16:05:11 +0200[diff] [blame]1694 wait_server_start "$THIS_SRV_PORT" "$SRV_PID"
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1695
1696 printf '# %s\n%s\n' "$NAME" "$CLI_CMD" > $CLI_OUT
Andrzej Kurek140b5892022-05-27 06:44:19 -0400[diff] [blame]1697 # The client must be a subprocess of the script in order for killing it to
1698 # work properly, that's why the ampersand is placed inside the eval command,
1699 # not at the end of the line: the latter approach will spawn eval as a
1700 # subprocess, and the $CLI_CMD as a grandchild.
1701 eval "$CLI_CMD &" >> $CLI_OUT 2>&1
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1702 wait_client_done
1703
1704 sleep 0.05
1705
1706 # terminate the server (and the proxy)
1707 kill $SRV_PID
Jerry Yud2d41102022-07-26 17:34:42 +0800[diff] [blame]1708 # For Ubuntu 22.04, `Terminated` message is outputed by wait command.
Jerry Yu27d80922022-08-02 21:28:55 +0800[diff] [blame]1709 # To remove it from stdout, redirect stdout/stderr to SRV_OUT
Jerry Yud2d41102022-07-26 17:34:42 +0800[diff] [blame]1710 wait $SRV_PID >> $SRV_OUT 2>&1
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1711 SRV_RET=$?
1712
1713 if [ -n "$PXY_CMD" ]; then
1714 kill $PXY_PID >/dev/null 2>&1
Jerry Yu6969eee2022-10-10 10:25:26 +0800[diff] [blame]1715 wait $PXY_PID >> $PXY_OUT 2>&1
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1716 fi
1717}
1718
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1719# Detect if the current test is going to use TLS 1.3 or TLS 1.2.
Valerio Setti194e2bd2023-03-02 17:18:10 +0100[diff] [blame]1720# $1 and $2 contain the server and client command lines, respectively.
Valerio Setti213c4ea2023-03-07 19:29:57 +0100[diff] [blame]1721#
1722# Note: this function only provides some guess about TLS version by simply
Yanray Wang7b320fa2023-11-08 10:33:30 +0800[diff] [blame]1723# looking at the server/client command lines. Even though this works
Valerio Setti213c4ea2023-03-07 19:29:57 +0100[diff] [blame]1724# for the sake of tests' filtering (especially in conjunction with the
1725# detect_required_features() function), it does NOT guarantee that the
1726# result is accurate. It does not check other conditions, such as:
Valerio Setti213c4ea2023-03-07 19:29:57 +0100[diff] [blame]1727# - we can force a ciphersuite which contains "WITH" in its name, meaning
1728# that we are going to use TLS 1.2
1729# - etc etc
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]1730get_tls_version() {
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1731 # First check if the version is forced on an Mbed TLS peer
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]1732 case $1 in
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1733 *tls12*)
1734 echo "TLS12"
1735 return;;
1736 *tls13*)
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]1737 echo "TLS13"
1738 return;;
1739 esac
1740 case $2 in
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1741 *tls12*)
1742 echo "TLS12"
1743 return;;
1744 *tls13*)
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]1745 echo "TLS13"
1746 return;;
1747 esac
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1748 # Second check if the version is forced on an OpenSSL or GnuTLS peer
1749 case $1 in
1750 tls1_2*)
1751 echo "TLS12"
1752 return;;
1753 *tls1_3)
1754 echo "TLS13"
1755 return;;
1756 esac
1757 case $2 in
1758 *tls1_2)
1759 echo "TLS12"
1760 return;;
1761 *tls1_3)
1762 echo "TLS13"
1763 return;;
1764 esac
1765 # Third if the version is not forced, if TLS 1.3 is enabled then the test
1766 # is aimed to run a TLS 1.3 handshake.
Gilles Peskine0bc57292024-09-06 14:43:17 +0200[diff] [blame]1767 if is_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1768 then
1769 echo "TLS13"
1770 else
1771 echo "TLS12"
1772 fi
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]1773}
1774
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1775# Usage: run_test name [-p proxy_cmd] srv_cmd cli_cmd cli_exit [option [...]]
1776# Options: -s pattern pattern that must be present in server output
1777# -c pattern pattern that must be present in client output
1778# -u pattern lines after pattern must be unique in client output
1779# -f call shell function on client output
1780# -S pattern pattern that must be absent in server output
1781# -C pattern pattern that must be absent in client output
1782# -U pattern lines after pattern must be unique in server output
1783# -F call shell function on server output
1784# -g call shell function on server and client output
1785run_test() {
1786 NAME="$1"
1787 shift 1
1788
Tomás González787428a2023-08-23 15:27:19 +0100[diff] [blame]1789 if is_excluded "$NAME"; then
1790 SKIP_NEXT="NO"
1791 # There was no request to run the test, so don't record its outcome.
1792 return
1793 fi
1794
Tomás González37a87392023-09-01 11:25:44 +0100[diff] [blame]1795 if [ "$LIST_TESTS" -gt 0 ]; then
Pengyu Lv3c170d32023-11-29 13:53:34 +0800[diff] [blame]1796 printf "%s\n" "${TEST_SUITE_NAME:-ssl-opt};$NAME"
Tomás González37a87392023-09-01 11:25:44 +0100[diff] [blame]1797 return
1798 fi
1799
Jerry Yu50d07bd2023-11-06 10:49:01 +0800[diff] [blame]1800 # Use ssl-opt as default test suite name. Also see record_outcome function
1801 if is_excluded_test_suite "${TEST_SUITE_NAME:-ssl-opt}"; then
1802 # Do not skip next test and skip current test.
1803 SKIP_NEXT="NO"
1804 return
1805 fi
1806
Tomás González51cb7042023-09-07 10:21:19 +0100[diff] [blame]1807 print_name "$NAME"
1808
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1809 # Do we only run numbered tests?
1810 if [ -n "$RUN_TEST_NUMBER" ]; then
1811 case ",$RUN_TEST_NUMBER," in
1812 *",$TESTS,"*) :;;
1813 *) SKIP_NEXT="YES";;
1814 esac
1815 fi
1816
Gilles Peskinef8b373e2024-09-04 16:07:56 +0200[diff] [blame]1817 # Does this test specify a proxy?
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1818 if [ "X$1" = "X-p" ]; then
1819 PXY_CMD="$2"
1820 shift 2
1821 else
1822 PXY_CMD=""
1823 fi
1824
Gilles Peskine6c798ef2024-09-04 16:05:11 +0200[diff] [blame]1825 # Does this test force a specific port?
1826 if [ "$1" = "-P" ]; then
1827 THIS_SRV_PORT="$2"
1828 shift 2
1829 else
1830 THIS_SRV_PORT="$SRV_PORT"
1831 fi
1832
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1833 # get commands and client output
1834 SRV_CMD="$1"
1835 CLI_CMD="$2"
1836 CLI_EXPECT="$3"
1837 shift 3
1838
1839 # Check if test uses files
1840 case "$SRV_CMD $CLI_CMD" in
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]1841 *$DATA_FILES_PATH/*)
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1842 requires_config_enabled MBEDTLS_FS_IO;;
1843 esac
1844
Gilles Peskine82a4ab22022-02-25 19:46:30 +0100[diff] [blame]1845 # Check if the test uses DTLS.
1846 detect_dtls "$SRV_CMD"
1847 if [ "$DTLS" -eq 1 ]; then
1848 requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
1849 fi
1850
Yanray Wang7b320fa2023-11-08 10:33:30 +0800[diff] [blame]1851 # Check if we are trying to use an external tool which does not support ECDH
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]1852 EXT_WO_ECDH=$(use_ext_tool_without_ecdh_support "$SRV_CMD" "$CLI_CMD")
1853
Gilles Peskine927f2f12024-09-11 21:03:05 +0200[diff] [blame]1854 # Guess the TLS version which is going to be used.
1855 # Note that this detection is wrong in some cases, which causes unduly
1856 # skipped test cases in builds with TLS 1.3 but not TLS 1.2.
1857 # https://github.com/Mbed-TLS/mbedtls/issues/9560
Valerio Setti726ffbf2023-08-02 20:02:44 +0200[diff] [blame]1858 if [ "$EXT_WO_ECDH" = "no" ]; then
1859 TLS_VERSION=$(get_tls_version "$SRV_CMD" "$CLI_CMD")
1860 else
1861 TLS_VERSION="TLS12"
1862 fi
1863
Gilles Peskine5c766dc2024-09-06 15:35:58 +0200[diff] [blame]1864 # If we're in a PSK-only build and the test can be adapted to PSK, do that.
1865 maybe_adapt_for_psk "$@"
1866
Valerio Setti726ffbf2023-08-02 20:02:44 +0200[diff] [blame]1867 # If the client or server requires certain features that can be detected
Manuel Pégourié-Gonnardf299efd2023-09-18 11:19:04 +0200[diff] [blame]1868 # from their command-line arguments, check whether they're enabled.
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]1869 detect_required_features "$SRV_CMD" "server" "$TLS_VERSION" "$EXT_WO_ECDH" "$@"
1870 detect_required_features "$CLI_CMD" "client" "$TLS_VERSION" "$EXT_WO_ECDH" "$@"
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1871
1872 # should we skip?
1873 if [ "X$SKIP_NEXT" = "XYES" ]; then
1874 SKIP_NEXT="NO"
1875 record_outcome "SKIP"
1876 SKIPS=$(( $SKIPS + 1 ))
1877 return
1878 fi
1879
1880 analyze_test_commands "$@"
1881
Andrzej Kurek8db7c0e2022-04-01 08:52:06 -0400[diff] [blame]1882 # One regular run and two retries
1883 TIMES_LEFT=3
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1884 while [ $TIMES_LEFT -gt 0 ]; do
1885 TIMES_LEFT=$(( $TIMES_LEFT - 1 ))
1886
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1887 do_run_test_once
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1888
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1889 check_test_failure "$@"
1890 case $outcome in
1891 PASS) break;;
Gilles Peskinef11d30e2021-10-19 18:00:10 +0200[diff] [blame]1892 RETRY*) printf "$outcome ";;
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1893 FAIL) return;;
1894 esac
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1895 done
1896
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1897 # If we get this far, the test case passed.
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1898 record_outcome "PASS"
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]1899 if [ "$PRESERVE_LOGS" -gt 0 ]; then
1900 mv $SRV_OUT o-srv-${TESTS}.log
1901 mv $CLI_OUT o-cli-${TESTS}.log
Hanno Becker7be2e5b2018-08-20 12:21:35 +0100[diff] [blame]1902 if [ -n "$PXY_CMD" ]; then
1903 mv $PXY_OUT o-pxy-${TESTS}.log
1904 fi
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]1905 fi
1906
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1907 rm -f $SRV_OUT $CLI_OUT $PXY_OUT
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1908}
1909
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1910run_test_psa() {
1911 requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1912 set_maybe_calc_verify none
Hanno Beckere9420c22018-11-20 11:37:34 +0000[diff] [blame]1913 run_test "PSA-supported ciphersuite: $1" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]1914 "$P_SRV debug_level=3 force_version=tls12" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]1915 "$P_CLI debug_level=3 force_ciphersuite=$1" \
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1916 0 \
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1917 -c "$maybe_calc_verify" \
Andrzej Kurek92dd4d02019-01-30 04:10:19 -0500[diff] [blame]1918 -c "calc PSA finished" \
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1919 -s "$maybe_calc_verify" \
Andrzej Kurek92dd4d02019-01-30 04:10:19 -0500[diff] [blame]1920 -s "calc PSA finished" \
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1921 -s "Protocol is TLSv1.2" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1922 -c "Perform PSA-based ECDH computation."\
Andrzej Kureke85414e2019-01-15 05:23:59 -0500[diff] [blame]1923 -c "Perform PSA-based computation of digest of ServerKeyExchange" \
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1924 -S "error" \
1925 -C "error"
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1926 unset maybe_calc_verify
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1927}
1928
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1929run_test_psa_force_curve() {
1930 requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1931 set_maybe_calc_verify none
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1932 run_test "PSA - ECDH with $1" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]1933 "$P_SRV debug_level=4 force_version=tls12 groups=$1" \
1934 "$P_CLI debug_level=4 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256 groups=$1" \
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1935 0 \
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1936 -c "$maybe_calc_verify" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1937 -c "calc PSA finished" \
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1938 -s "$maybe_calc_verify" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1939 -s "calc PSA finished" \
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1940 -s "Protocol is TLSv1.2" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1941 -c "Perform PSA-based ECDH computation."\
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]1942 -c "Perform PSA-based computation of digest of ServerKeyExchange" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1943 -S "error" \
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]1944 -C "error"
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1945 unset maybe_calc_verify
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1946}
1947
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1948# Test that the server's memory usage after a handshake is reduced when a client specifies
1949# a maximum fragment length.
1950# first argument ($1) is MFL for SSL client
1951# second argument ($2) is memory usage for SSL client with default MFL (16k)
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1952run_test_memory_after_handshake_with_mfl()
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1953{
1954 # The test passes if the difference is around 2*(16k-MFL)
Gilles Peskine5b428d72020-08-26 21:52:23 +0200[diff] [blame]1955 MEMORY_USAGE_LIMIT="$(( $2 - ( 2 * ( 16384 - $1 )) ))"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1956
1957 # Leave some margin for robustness
1958 MEMORY_USAGE_LIMIT="$(( ( MEMORY_USAGE_LIMIT * 110 ) / 100 ))"
1959
1960 run_test "Handshake memory usage (MFL $1)" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]1961 "$P_SRV debug_level=3 auth_mode=required force_version=tls12" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]1962 "$P_CLI debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]1963 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1964 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM max_frag_len=$1" \
1965 0 \
1966 -F "handshake_memory_check $MEMORY_USAGE_LIMIT"
1967}
1968
1969
1970# Test that the server's memory usage after a handshake is reduced when a client specifies
1971# different values of Maximum Fragment Length: default (16k), 4k, 2k, 1k and 512 bytes
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1972run_tests_memory_after_handshake()
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1973{
1974 # all tests in this sequence requires the same configuration (see requires_config_enabled())
1975 SKIP_THIS_TESTS="$SKIP_NEXT"
1976
1977 # first test with default MFU is to get reference memory usage
1978 MEMORY_USAGE_MFL_16K=0
1979 run_test "Handshake memory usage initial (MFL 16384 - default)" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]1980 "$P_SRV debug_level=3 auth_mode=required force_version=tls12" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]1981 "$P_CLI debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]1982 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1983 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM" \
1984 0 \
1985 -F "handshake_memory_get MEMORY_USAGE_MFL_16K"
1986
1987 SKIP_NEXT="$SKIP_THIS_TESTS"
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1988 run_test_memory_after_handshake_with_mfl 4096 "$MEMORY_USAGE_MFL_16K"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1989
1990 SKIP_NEXT="$SKIP_THIS_TESTS"
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1991 run_test_memory_after_handshake_with_mfl 2048 "$MEMORY_USAGE_MFL_16K"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1992
1993 SKIP_NEXT="$SKIP_THIS_TESTS"
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1994 run_test_memory_after_handshake_with_mfl 1024 "$MEMORY_USAGE_MFL_16K"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1995
1996 SKIP_NEXT="$SKIP_THIS_TESTS"
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1997 run_test_memory_after_handshake_with_mfl 512 "$MEMORY_USAGE_MFL_16K"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1998}
1999
Max Fillinger9c3a7ba2024-11-11 17:50:34 +0100[diff] [blame]2000run_test_export_keying_material() {
2001 unset EXPORTED_KEY1
2002 unset EXPORTED_KEY2
2003 TLS_VERSION="$1"
2004 run_test "TLS $TLS_VERSION: Export keying material" \
2005 "$P_SRV debug_level=4 force_version=$TLS_VERSION exp_label=test-label" \
2006 "$P_CLI debug_level=4 force_version=$TLS_VERSION exp_label=test-label" \
2007 0 \
2008 -s "Exporting key of length 20 with label \".*\": 0x" \
2009 -c "Exporting key of length 20 with label \".*\": 0x" \
2010 -f get_exported_key \
2011 -F check_exported_key
2012}
2013
2014run_test_export_keying_material_openssl_compat() {
2015 unset EXPORTED_KEY1
2016 unset EXPORTED_KEY2
2017 TLS_VERSION="$1"
2018 run_test "TLS $TLS_VERSION: Export keying material (OpenSSL compatibility)" \
2019 "$P_SRV debug_level=4 force_version=$TLS_VERSION exp_label=test-label" \
2020 "$O_CLI -keymatexport=test-label" \
2021 0 \
2022 -s "Exporting key of length 20 with label \".*\": 0x" \
2023 -c "Keying material exporter:" \
2024 -F get_exported_key \
2025 -f check_exported_key_openssl
2026}
2027
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]2028cleanup() {
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]2029 rm -f $CLI_OUT $SRV_OUT $PXY_OUT $SESSION
Piotr Nowicki3de298f2020-04-16 14:35:19 +0200[diff] [blame]2030 rm -f context_srv.txt
2031 rm -f context_cli.txt
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]2032 test -n "${SRV_PID:-}" && kill $SRV_PID >/dev/null 2>&1
2033 test -n "${PXY_PID:-}" && kill $PXY_PID >/dev/null 2>&1
2034 test -n "${CLI_PID:-}" && kill $CLI_PID >/dev/null 2>&1
2035 test -n "${DOG_PID:-}" && kill $DOG_PID >/dev/null 2>&1
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]2036 exit 1
2037}
2038
Manuel Pégourié-Gonnard9dea8bd2014-02-26 18:21:02 +0100[diff] [blame]2039#
2040# MAIN
2041#
2042
Yanray Wang5b33f642023-02-28 11:56:59 +0800[diff] [blame]2043# Make the outcome file path relative to the original directory, not
2044# to .../tests
2045case "$MBEDTLS_TEST_OUTCOME_FILE" in
2046 [!/]*)
2047 MBEDTLS_TEST_OUTCOME_FILE="$ORIGINAL_PWD/$MBEDTLS_TEST_OUTCOME_FILE"
2048 ;;
2049esac
2050
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]2051populate_enabled_hash_algs
2052
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]2053# Optimize filters: if $FILTER and $EXCLUDE can be expressed as shell
2054# patterns rather than regular expressions, use a case statement instead
2055# of calling grep. To keep the optimizer simple, it is incomplete and only
2056# detects simple cases: plain substring, everything, nothing.
2057#
2058# As an exception, the character '.' is treated as an ordinary character
2059# if it is the only special character in the string. This is because it's
2060# rare to need "any one character", but needing a literal '.' is common
2061# (e.g. '-f "DTLS 1.2"').
2062need_grep=
2063case "$FILTER" in
2064 '^$') simple_filter=;;
2065 '.*') simple_filter='*';;
Gilles Peskineb09e0012020-09-29 23:48:39 +0200[diff] [blame]2066 *[][$+*?\\^{\|}]*) # Regexp special characters (other than .), we need grep
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]2067 need_grep=1;;
2068 *) # No regexp or shell-pattern special character
2069 simple_filter="*$FILTER*";;
2070esac
2071case "$EXCLUDE" in
2072 '^$') simple_exclude=;;
2073 '.*') simple_exclude='*';;
Gilles Peskineb09e0012020-09-29 23:48:39 +0200[diff] [blame]2074 *[][$+*?\\^{\|}]*) # Regexp special characters (other than .), we need grep
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]2075 need_grep=1;;
2076 *) # No regexp or shell-pattern special character
2077 simple_exclude="*$EXCLUDE*";;
2078esac
2079if [ -n "$need_grep" ]; then
2080 is_excluded () {
2081 ! echo "$1" | grep "$FILTER" | grep -q -v "$EXCLUDE"
2082 }
2083else
2084 is_excluded () {
2085 case "$1" in
2086 $simple_exclude) true;;
2087 $simple_filter) false;;
2088 *) true;;
2089 esac
2090 }
2091fi
2092
Jerry Yu50d07bd2023-11-06 10:49:01 +0800[diff] [blame]2093# Filter tests according to TEST_SUITE_NAME
2094is_excluded_test_suite () {
2095 if [ -n "$RUN_TEST_SUITE" ]
2096 then
2097 case ",$RUN_TEST_SUITE," in
2098 *",$1,"*) false;;
2099 *) true;;
2100 esac
2101 else
2102 false
2103 fi
2104
2105}
2106
2107
Tomás González06956a12023-08-23 15:46:20 +0100[diff] [blame]2108if [ "$LIST_TESTS" -eq 0 ];then
2109
2110 # sanity checks, avoid an avalanche of errors
2111 P_SRV_BIN="${P_SRV%%[ ]*}"
2112 P_CLI_BIN="${P_CLI%%[ ]*}"
2113 P_PXY_BIN="${P_PXY%%[ ]*}"
2114 if [ ! -x "$P_SRV_BIN" ]; then
2115 echo "Command '$P_SRV_BIN' is not an executable file"
Simon Butcher3c0d7b82016-05-23 11:13:17 +0100[diff] [blame]2116 exit 1
2117 fi
Tomás González06956a12023-08-23 15:46:20 +0100[diff] [blame]2118 if [ ! -x "$P_CLI_BIN" ]; then
2119 echo "Command '$P_CLI_BIN' is not an executable file"
2120 exit 1
2121 fi
2122 if [ ! -x "$P_PXY_BIN" ]; then
2123 echo "Command '$P_PXY_BIN' is not an executable file"
2124 exit 1
2125 fi
2126 if [ "$MEMCHECK" -gt 0 ]; then
2127 if which valgrind >/dev/null 2>&1; then :; else
2128 echo "Memcheck not possible. Valgrind not found"
2129 exit 1
2130 fi
2131 fi
2132 if which $OPENSSL >/dev/null 2>&1; then :; else
2133 echo "Command '$OPENSSL' not found"
2134 exit 1
2135 fi
2136
2137 # used by watchdog
2138 MAIN_PID="$$"
2139
2140 # We use somewhat arbitrary delays for tests:
2141 # - how long do we wait for the server to start (when lsof not available)?
2142 # - how long do we allow for the client to finish?
2143 # (not to check performance, just to avoid waiting indefinitely)
2144 # Things are slower with valgrind, so give extra time here.
2145 #
2146 # Note: without lsof, there is a trade-off between the running time of this
2147 # script and the risk of spurious errors because we didn't wait long enough.
2148 # The watchdog delay on the other hand doesn't affect normal running time of
2149 # the script, only the case where a client or server gets stuck.
2150 if [ "$MEMCHECK" -gt 0 ]; then
2151 START_DELAY=6
2152 DOG_DELAY=60
2153 else
2154 START_DELAY=2
2155 DOG_DELAY=20
2156 fi
2157
2158 # some particular tests need more time:
2159 # - for the client, we multiply the usual watchdog limit by a factor
2160 # - for the server, we sleep for a number of seconds after the client exits
2161 # see client_need_more_time() and server_needs_more_time()
2162 CLI_DELAY_FACTOR=1
2163 SRV_DELAY_SECONDS=0
2164
2165 # fix commands to use this port, force IPv4 while at it
2166 # +SRV_PORT will be replaced by either $SRV_PORT or $PXY_PORT later
2167 # Note: Using 'localhost' rather than 127.0.0.1 here is unwise, as on many
2168 # machines that will resolve to ::1, and we don't want ipv6 here.
2169 P_SRV="$P_SRV server_addr=127.0.0.1 server_port=$SRV_PORT"
2170 P_CLI="$P_CLI server_addr=127.0.0.1 server_port=+SRV_PORT"
2171 P_PXY="$P_PXY server_addr=127.0.0.1 server_port=$SRV_PORT listen_addr=127.0.0.1 listen_port=$PXY_PORT ${SEED:+"seed=$SEED"}"
2172 O_SRV="$O_SRV -accept $SRV_PORT"
2173 O_CLI="$O_CLI -connect 127.0.0.1:+SRV_PORT"
2174 G_SRV="$G_SRV -p $SRV_PORT"
2175 G_CLI="$G_CLI -p +SRV_PORT"
2176
2177 # Newer versions of OpenSSL have a syntax to enable all "ciphers", even
2178 # low-security ones. This covers not just cipher suites but also protocol
2179 # versions. It is necessary, for example, to use (D)TLS 1.0/1.1 on
2180 # OpenSSL 1.1.1f from Ubuntu 20.04. The syntax was only introduced in
2181 # OpenSSL 1.1.0 (21e0c1d23afff48601eb93135defddae51f7e2e3) and I can't find
2182 # a way to discover it from -help, so check the openssl version.
2183 case $($OPENSSL version) in
2184 "OpenSSL 0"*|"OpenSSL 1.0"*) :;;
2185 *)
2186 O_CLI="$O_CLI -cipher ALL@SECLEVEL=0"
2187 O_SRV="$O_SRV -cipher ALL@SECLEVEL=0"
2188 ;;
2189 esac
2190
2191 if [ -n "${OPENSSL_NEXT:-}" ]; then
2192 O_NEXT_SRV="$O_NEXT_SRV -accept $SRV_PORT"
2193 O_NEXT_SRV_NO_CERT="$O_NEXT_SRV_NO_CERT -accept $SRV_PORT"
2194 O_NEXT_SRV_EARLY_DATA="$O_NEXT_SRV_EARLY_DATA -accept $SRV_PORT"
2195 O_NEXT_CLI="$O_NEXT_CLI -connect 127.0.0.1:+SRV_PORT"
2196 O_NEXT_CLI_NO_CERT="$O_NEXT_CLI_NO_CERT -connect 127.0.0.1:+SRV_PORT"
2197 fi
2198
2199 if [ -n "${GNUTLS_NEXT_SERV:-}" ]; then
2200 G_NEXT_SRV="$G_NEXT_SRV -p $SRV_PORT"
2201 G_NEXT_SRV_NO_CERT="$G_NEXT_SRV_NO_CERT -p $SRV_PORT"
2202 fi
2203
2204 if [ -n "${GNUTLS_NEXT_CLI:-}" ]; then
2205 G_NEXT_CLI="$G_NEXT_CLI -p +SRV_PORT"
2206 G_NEXT_CLI_NO_CERT="$G_NEXT_CLI_NO_CERT -p +SRV_PORT localhost"
2207 fi
2208
2209 # Allow SHA-1, because many of our test certificates use it
2210 P_SRV="$P_SRV allow_sha1=1"
2211 P_CLI="$P_CLI allow_sha1=1"
2212
Simon Butcher3c0d7b82016-05-23 11:13:17 +0100[diff] [blame]2213fi
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]2214# Also pick a unique name for intermediate files
2215SRV_OUT="srv_out.$$"
2216CLI_OUT="cli_out.$$"
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]2217PXY_OUT="pxy_out.$$"
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]2218SESSION="session.$$"
2219
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]2220SKIP_NEXT="NO"
2221
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]2222trap cleanup INT TERM HUP
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]2223
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]2224# Basic test
2225
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]2226# Checks that:
2227# - things work with all ciphersuites active (used with config-full in all.sh)
Gilles Peskine799eee62021-06-02 22:14:15 +0200[diff] [blame]2228# - the expected parameters are selected
Gilles Peskine35615262022-02-25 19:50:38 +0100[diff] [blame]2229requires_ciphersuite_enabled TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2230requires_hash_alg SHA_512 # "signature_algorithm ext: 6"
Gilles Peskine07e24e92024-09-07 19:50:17 +0200[diff] [blame]2231requires_any_configs_enabled MBEDTLS_ECP_DP_CURVE25519_ENABLED \
2232 PSA_WANT_ECC_MONTGOMERY_255
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2233run_test "Default, TLS 1.2" \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]2234 "$P_SRV debug_level=3" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2235 "$P_CLI force_version=tls12" \
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]2236 0 \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]2237 -s "Protocol is TLSv1.2" \
Manuel Pégourié-Gonnardce66d5e2018-06-14 11:11:15 +0200[diff] [blame]2238 -s "Ciphersuite is TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256" \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]2239 -s "client hello v3, signature_algorithm ext: 6" \
Gilles Peskine799eee62021-06-02 22:14:15 +0200[diff] [blame]2240 -s "ECDHE curve: x25519" \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]2241 -S "error" \
2242 -C "error"
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]2243
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2244requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine35615262022-02-25 19:50:38 +0100[diff] [blame]2245requires_ciphersuite_enabled TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256
Manuel Pégourié-Gonnard3bb08012015-01-22 13:34:21 +0000[diff] [blame]2246run_test "Default, DTLS" \
2247 "$P_SRV dtls=1" \
2248 "$P_CLI dtls=1" \
2249 0 \
2250 -s "Protocol is DTLSv1.2" \
Manuel Pégourié-Gonnardce66d5e2018-06-14 11:11:15 +0200[diff] [blame]2251 -s "Ciphersuite is TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256"
Manuel Pégourié-Gonnard3bb08012015-01-22 13:34:21 +0000[diff] [blame]2252
Hanno Becker721f7c12020-08-17 12:17:32 +0100[diff] [blame]2253run_test "TLS client auth: required" \
2254 "$P_SRV auth_mode=required" \
2255 "$P_CLI" \
2256 0 \
2257 -s "Verifying peer X.509 certificate... ok"
2258
Glenn Strauss6eef5632022-01-23 08:37:02 -0500[diff] [blame]2259run_test "key size: TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2260 "$P_SRV" \
2261 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2262 0 \
2263 -c "Ciphersuite is TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2264 -c "Key size is 256"
2265
2266run_test "key size: TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2267 "$P_SRV" \
2268 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2269 0 \
2270 -c "Ciphersuite is TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2271 -c "Key size is 128"
2272
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2273requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settidd43d7b2023-11-09 14:10:51 +0100[diff] [blame]2274# server5.key.enc is in PEM format and AES-256-CBC crypted. Unfortunately PEM
2275# module does not support PSA dispatching so we need builtin support.
2276requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
2277requires_config_enabled MBEDTLS_AES_C
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]2278requires_hash_alg MD5
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2279requires_hash_alg SHA_256
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2280run_test "TLS: password protected client key" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2281 "$P_SRV force_version=tls12 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2282 "$P_CLI crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key.enc key_pwd=PolarSSLTest" \
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2283 0
2284
2285requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settidd43d7b2023-11-09 14:10:51 +0100[diff] [blame]2286# server5.key.enc is in PEM format and AES-256-CBC crypted. Unfortunately PEM
2287# module does not support PSA dispatching so we need builtin support.
2288requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
2289requires_config_enabled MBEDTLS_AES_C
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]2290requires_hash_alg MD5
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2291requires_hash_alg SHA_256
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2292run_test "TLS: password protected server key" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2293 "$P_SRV crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key.enc key_pwd=PolarSSLTest" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2294 "$P_CLI force_version=tls12" \
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2295 0
2296
2297requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2298requires_config_enabled MBEDTLS_RSA_C
Valerio Settidd43d7b2023-11-09 14:10:51 +0100[diff] [blame]2299# server5.key.enc is in PEM format and AES-256-CBC crypted. Unfortunately PEM
2300# module does not support PSA dispatching so we need builtin support.
2301requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
2302requires_config_enabled MBEDTLS_AES_C
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]2303requires_hash_alg MD5
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2304requires_hash_alg SHA_256
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2305run_test "TLS: password protected server key, two certificates" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2306 "$P_SRV force_version=tls12\
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2307 key_file=$DATA_FILES_PATH/server5.key.enc key_pwd=PolarSSLTest crt_file=$DATA_FILES_PATH/server5.crt \
2308 key_file2=$DATA_FILES_PATH/server2.key.enc key_pwd2=PolarSSLTest crt_file2=$DATA_FILES_PATH/server2.crt" \
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2309 "$P_CLI" \
2310 0
2311
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2312run_test "CA callback on client" \
2313 "$P_SRV debug_level=3" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]2314 "$P_CLI ca_callback=1 debug_level=3 " \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2315 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]2316 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2317 -S "error" \
2318 -C "error"
2319
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2320requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2321requires_hash_alg SHA_256
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2322run_test "CA callback on server" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]2323 "$P_SRV auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2324 "$P_CLI ca_callback=1 debug_level=3 crt_file=$DATA_FILES_PATH/server5.crt \
2325 key_file=$DATA_FILES_PATH/server5.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2326 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]2327 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2328 -s "Verifying peer X.509 certificate... ok" \
2329 -S "error" \
2330 -C "error"
2331
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2332# Test using an EC opaque private key for client authentication
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]2333requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2334requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]2335requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2336requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2337run_test "Opaque key for client authentication: ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2338 "$P_SRV force_version=tls12 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt \
2339 key_file=$DATA_FILES_PATH/server5.key" \
2340 "$P_CLI key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2341 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none" \
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]2342 0 \
2343 -c "key type: Opaque" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2344 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]2345 -s "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2346 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]2347 -S "error" \
2348 -C "error"
2349
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2350# Test using a RSA opaque private key for client authentication
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2351requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2352requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2353requires_config_enabled MBEDTLS_RSA_C
valeriof27472b2023-03-09 16:19:35 +0100[diff] [blame]2354requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2355requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2356run_test "Opaque key for client authentication: ECDHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2357 "$P_SRV force_version=tls12 auth_mode=required crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2358 key_file=$DATA_FILES_PATH/server2.key" \
2359 "$P_CLI key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2360 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2361 0 \
2362 -c "key type: Opaque" \
2363 -c "Ciphersuite is TLS-ECDHE-RSA" \
2364 -s "Verifying peer X.509 certificate... ok" \
2365 -s "Ciphersuite is TLS-ECDHE-RSA" \
2366 -S "error" \
2367 -C "error"
2368
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2369requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2370requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
2371requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2372requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2373run_test "Opaque key for client authentication: DHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2374 "$P_SRV force_version=tls12 auth_mode=required crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2375 key_file=$DATA_FILES_PATH/server2.key" \
2376 "$P_CLI key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2377 key_file=$DATA_FILES_PATH/server2.key force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2378 key_opaque_algs=rsa-sign-pkcs1,none" \
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2379 0 \
2380 -c "key type: Opaque" \
2381 -c "Ciphersuite is TLS-DHE-RSA" \
2382 -s "Verifying peer X.509 certificate... ok" \
2383 -s "Ciphersuite is TLS-DHE-RSA" \
2384 -S "error" \
2385 -C "error"
2386
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2387# Test using an EC opaque private key for server authentication
Przemyslaw Stekiel0483e3d2021-10-04 11:13:22 +0200[diff] [blame]2388requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2389requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]2390requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2391requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2392run_test "Opaque key for server authentication: ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2393 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2394 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2395 "$P_CLI force_version=tls12" \
Przemyslaw Stekiel0483e3d2021-10-04 11:13:22 +0200[diff] [blame]2396 0 \
2397 -c "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2398 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Gilles Peskine05bf89d2022-01-25 17:50:25 +0100[diff] [blame]2399 -s "key types: Opaque, none" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2400 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
Przemyslaw Stekiel0483e3d2021-10-04 11:13:22 +0200[diff] [blame]2401 -S "error" \
2402 -C "error"
2403
Neil Armstrong023bf8d2022-03-23 14:04:04 +0100[diff] [blame]2404requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2405requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2406requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2407run_test "Opaque key for server authentication: ECDH-" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2408 "$P_SRV auth_mode=required key_opaque=1\
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2409 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt\
2410 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdh,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2411 "$P_CLI force_version=tls12" \
Neil Armstrong023bf8d2022-03-23 14:04:04 +0100[diff] [blame]2412 0 \
2413 -c "Verifying peer X.509 certificate... ok" \
2414 -c "Ciphersuite is TLS-ECDH-" \
2415 -s "key types: Opaque, none" \
2416 -s "Ciphersuite is TLS-ECDH-" \
2417 -S "error" \
2418 -C "error"
2419
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2420requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2421requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2422requires_config_disabled MBEDTLS_SSL_ASYNC_PRIVATE
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2423requires_hash_alg SHA_256
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2424run_test "Opaque key for server authentication: invalid key: decrypt with ECC key, no async" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2425 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2426 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=rsa-decrypt,none \
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2427 debug_level=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2428 "$P_CLI force_version=tls12" \
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2429 1 \
2430 -s "key types: Opaque, none" \
2431 -s "error" \
2432 -c "error" \
2433 -c "Public key type mismatch"
2434
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2435requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2436requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
2437requires_config_enabled MBEDTLS_ECDSA_C
2438requires_config_enabled MBEDTLS_RSA_C
2439requires_config_disabled MBEDTLS_SSL_ASYNC_PRIVATE
2440requires_hash_alg SHA_256
2441run_test "Opaque key for server authentication: invalid key: ecdh with RSA key, no async" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2442 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2443 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=ecdh,none \
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2444 debug_level=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2445 "$P_CLI force_version=tls12" \
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2446 1 \
2447 -s "key types: Opaque, none" \
2448 -s "error" \
2449 -c "error" \
2450 -c "Public key type mismatch"
2451
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2452requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2453requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2454requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
2455requires_hash_alg SHA_256
2456run_test "Opaque key for server authentication: invalid alg: decrypt with ECC key, async" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2457 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2458 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=rsa-decrypt,none \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2459 debug_level=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2460 "$P_CLI force_version=tls12" \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2461 1 \
2462 -s "key types: Opaque, none" \
2463 -s "got ciphersuites in common, but none of them usable" \
2464 -s "error" \
2465 -c "error"
2466
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2467requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2468requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrongeb4390b2022-05-27 10:26:02 +0200[diff] [blame]2469requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2470requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2471requires_hash_alg SHA_256
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2472run_test "Opaque key for server authentication: invalid alg: ecdh with RSA key, async" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2473 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2474 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=ecdh,none \
Neil Armstrongeb4390b2022-05-27 10:26:02 +0200[diff] [blame]2475 debug_level=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2476 "$P_CLI force_version=tls12" \
Neil Armstrongeb4390b2022-05-27 10:26:02 +0200[diff] [blame]2477 1 \
2478 -s "key types: Opaque, none" \
2479 -s "got ciphersuites in common, but none of them usable" \
2480 -s "error" \
2481 -c "error"
2482
Neil Armstrongeb4390b2022-05-27 10:26:02 +0200[diff] [blame]2483requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2484requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2485requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2486run_test "Opaque key for server authentication: invalid alg: ECDHE-ECDSA with ecdh" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2487 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2488 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdh,none \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2489 debug_level=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2490 "$P_CLI force_version=tls12 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-CCM" \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2491 1 \
2492 -s "key types: Opaque, none" \
2493 -s "got ciphersuites in common, but none of them usable" \
2494 -s "error" \
2495 -c "error"
2496
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2497requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2498requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]2499requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2500requires_hash_alg SHA_256
Neil Armstrongc67e6e92022-07-01 15:48:10 +0200[diff] [blame]2501requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2502run_test "Opaque keys for server authentication: EC keys with different algs, force ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2503 "$P_SRV force_version=tls12 key_opaque=1 crt_file=$DATA_FILES_PATH/server7.crt \
2504 key_file=$DATA_FILES_PATH/server7.key key_opaque_algs=ecdh,none \
2505 crt_file2=$DATA_FILES_PATH/server5.crt key_file2=$DATA_FILES_PATH/server5.key \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2506 key_opaque_algs2=ecdsa-sign,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2507 "$P_CLI force_version=tls12" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2508 0 \
2509 -c "Verifying peer X.509 certificate... ok" \
2510 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2511 -c "CN=Polarssl Test EC CA" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2512 -s "key types: Opaque, Opaque" \
2513 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
2514 -S "error" \
2515 -C "error"
2516
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2517requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2518requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2519requires_hash_alg SHA_384
Neil Armstrongc67e6e92022-07-01 15:48:10 +0200[diff] [blame]2520requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2521run_test "Opaque keys for server authentication: EC keys with different algs, force ECDH-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2522 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server7.crt \
2523 key_file=$DATA_FILES_PATH/server7.key key_opaque_algs=ecdsa-sign,none \
2524 crt_file2=$DATA_FILES_PATH/server5.crt key_file2=$DATA_FILES_PATH/server5.key \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2525 key_opaque_algs2=ecdh,none debug_level=3" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2526 "$P_CLI force_version=tls12 force_ciphersuite=TLS-ECDH-ECDSA-WITH-CAMELLIA-256-CBC-SHA384" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2527 0 \
2528 -c "Verifying peer X.509 certificate... ok" \
2529 -c "Ciphersuite is TLS-ECDH-ECDSA" \
2530 -c "CN=Polarssl Test EC CA" \
2531 -s "key types: Opaque, Opaque" \
2532 -s "Ciphersuite is TLS-ECDH-ECDSA" \
2533 -S "error" \
2534 -C "error"
2535
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2536requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2537requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2538requires_hash_alg SHA_384
Neil Armstrongc67e6e92022-07-01 15:48:10 +0200[diff] [blame]2539requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2540run_test "Opaque keys for server authentication: EC + RSA, force ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2541 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2542 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none \
2543 crt_file2=$DATA_FILES_PATH/server2-sha256.crt \
2544 key_file2=$DATA_FILES_PATH/server2.key key_opaque_algs2=rsa-sign-pkcs1,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2545 "$P_CLI force_version=tls12 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-CCM" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2546 0 \
2547 -c "Verifying peer X.509 certificate... ok" \
2548 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2549 -c "CN=Polarssl Test EC CA" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2550 -s "key types: Opaque, Opaque" \
2551 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
2552 -S "error" \
2553 -C "error"
2554
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2555requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2556requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2557requires_config_enabled MBEDTLS_RSA_C
Jerry Yuddda0502022-12-01 19:43:12 +0800[diff] [blame]2558requires_config_enabled MBEDTLS_SSL_SRV_C
2559requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron6ec21232022-09-16 16:41:53 +0200[diff] [blame]2560run_test "TLS 1.3 opaque key: no suitable algorithm found" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]2561 "$P_SRV debug_level=4 auth_mode=required key_opaque=1 key_opaque_algs=rsa-decrypt,none" \
Ronald Crone3196d22022-09-16 16:43:35 +0200[diff] [blame]2562 "$P_CLI debug_level=4 key_opaque=1 key_opaque_algs=rsa-decrypt,rsa-sign-pss" \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2563 1 \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2564 -c "key type: Opaque" \
2565 -s "key types: Opaque, Opaque" \
2566 -c "error" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]2567 -s "no suitable signature algorithm"
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2568
2569requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2570requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2571requires_config_enabled MBEDTLS_RSA_C
Jerry Yuddda0502022-12-01 19:43:12 +0800[diff] [blame]2572requires_config_enabled MBEDTLS_SSL_SRV_C
2573requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron6ec21232022-09-16 16:41:53 +0200[diff] [blame]2574run_test "TLS 1.3 opaque key: suitable algorithm found" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]2575 "$P_SRV debug_level=4 auth_mode=required key_opaque=1 key_opaque_algs=rsa-decrypt,rsa-sign-pss" \
Ronald Crone3196d22022-09-16 16:43:35 +0200[diff] [blame]2576 "$P_CLI debug_level=4 key_opaque=1 key_opaque_algs=rsa-decrypt,rsa-sign-pss" \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2577 0 \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2578 -c "key type: Opaque" \
2579 -s "key types: Opaque, Opaque" \
2580 -C "error" \
Jerry Yuddda0502022-12-01 19:43:12 +0800[diff] [blame]2581 -S "error"
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2582
2583requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2584requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2585requires_config_enabled MBEDTLS_RSA_C
Jerry Yuddda0502022-12-01 19:43:12 +0800[diff] [blame]2586requires_config_enabled MBEDTLS_SSL_SRV_C
2587requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron50969e32022-09-16 15:54:33 +0200[diff] [blame]2588run_test "TLS 1.3 opaque key: first client sig alg not suitable" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]2589 "$P_SRV debug_level=4 auth_mode=required key_opaque=1 key_opaque_algs=rsa-sign-pss-sha512,none" \
Ronald Cron50969e32022-09-16 15:54:33 +0200[diff] [blame]2590 "$P_CLI debug_level=4 sig_algs=rsa_pss_rsae_sha256,rsa_pss_rsae_sha512" \
2591 0 \
Ronald Cron50969e32022-09-16 15:54:33 +0200[diff] [blame]2592 -s "key types: Opaque, Opaque" \
2593 -s "CertificateVerify signature failed with rsa_pss_rsae_sha256" \
2594 -s "CertificateVerify signature with rsa_pss_rsae_sha512" \
2595 -C "error" \
2596 -S "error" \
2597
2598requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2599requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2600requires_config_enabled MBEDTLS_RSA_C
Jerry Yuddda0502022-12-01 19:43:12 +0800[diff] [blame]2601requires_config_enabled MBEDTLS_SSL_SRV_C
2602requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron6ec21232022-09-16 16:41:53 +0200[diff] [blame]2603run_test "TLS 1.3 opaque key: 2 keys on server, suitable algorithm found" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]2604 "$P_SRV debug_level=4 auth_mode=required key_opaque=1 key_opaque_algs2=ecdsa-sign,none key_opaque_algs=rsa-decrypt,rsa-sign-pss" \
Ronald Crone3196d22022-09-16 16:43:35 +0200[diff] [blame]2605 "$P_CLI debug_level=4 key_opaque=1 key_opaque_algs=rsa-decrypt,rsa-sign-pss" \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2606 0 \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2607 -c "key type: Opaque" \
2608 -s "key types: Opaque, Opaque" \
2609 -C "error" \
2610 -S "error" \
2611
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2612# Test using a RSA opaque private key for server authentication
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2613requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2614requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2615requires_config_enabled MBEDTLS_RSA_C
valeriof27472b2023-03-09 16:19:35 +0100[diff] [blame]2616requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2617requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2618run_test "Opaque key for server authentication: ECDHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2619 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2620 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2621 "$P_CLI force_version=tls12" \
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2622 0 \
2623 -c "Verifying peer X.509 certificate... ok" \
2624 -c "Ciphersuite is TLS-ECDHE-RSA" \
2625 -s "key types: Opaque, none" \
2626 -s "Ciphersuite is TLS-ECDHE-RSA" \
2627 -S "error" \
2628 -C "error"
2629
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2630requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2631requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2632requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2633requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2634run_test "Opaque key for server authentication: DHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2635 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2636 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2637 "$P_CLI force_version=tls12 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2638 0 \
2639 -c "Verifying peer X.509 certificate... ok" \
2640 -c "Ciphersuite is TLS-DHE-RSA" \
2641 -s "key types: Opaque, none" \
2642 -s "Ciphersuite is TLS-DHE-RSA" \
2643 -S "error" \
2644 -C "error"
2645
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2646requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2647requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2648requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2649requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2650run_test "Opaque key for server authentication: RSA-PSK" \
2651 "$P_SRV debug_level=1 key_opaque=1 key_opaque_algs=rsa-decrypt,none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]2652 psk=73776f726466697368 psk_identity=foo" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2653 "$P_CLI force_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]2654 psk=73776f726466697368 psk_identity=foo" \
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2655 0 \
2656 -c "Verifying peer X.509 certificate... ok" \
2657 -c "Ciphersuite is TLS-RSA-PSK-" \
2658 -s "key types: Opaque, Opaque" \
2659 -s "Ciphersuite is TLS-RSA-PSK-" \
2660 -S "error" \
2661 -C "error"
2662
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2663requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2664requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
2665requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2666requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2667run_test "Opaque key for server authentication: RSA-" \
2668 "$P_SRV debug_level=3 key_opaque=1 key_opaque_algs=rsa-decrypt,none " \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2669 "$P_CLI force_version=tls12 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA256" \
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2670 0 \
2671 -c "Verifying peer X.509 certificate... ok" \
2672 -c "Ciphersuite is TLS-RSA-" \
2673 -s "key types: Opaque, Opaque" \
2674 -s "Ciphersuite is TLS-RSA-" \
2675 -S "error" \
2676 -C "error"
2677
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2678requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2679requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2680requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2681requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2682run_test "Opaque key for server authentication: DHE-RSA, PSS instead of PKCS1" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2683 "$P_SRV auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2684 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pss,none debug_level=1" \
2685 "$P_CLI crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2686 key_file=$DATA_FILES_PATH/server2.key force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2687 1 \
2688 -s "key types: Opaque, none" \
2689 -s "got ciphersuites in common, but none of them usable" \
2690 -s "error" \
2691 -c "error"
2692
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2693requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2694requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2695requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2696requires_hash_alg SHA_256
Neil Armstrongc67e6e92022-07-01 15:48:10 +0200[diff] [blame]2697requires_config_disabled MBEDTLS_X509_REMOVE_INFO
valeriof27472b2023-03-09 16:19:35 +0100[diff] [blame]2698requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2699run_test "Opaque keys for server authentication: RSA keys with different algs" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2700 "$P_SRV force_version=tls12 auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2701 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pss,none \
2702 crt_file2=$DATA_FILES_PATH/server4.crt \
2703 key_file2=$DATA_FILES_PATH/server4.key key_opaque_algs2=rsa-sign-pkcs1,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2704 "$P_CLI force_version=tls12" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2705 0 \
2706 -c "Verifying peer X.509 certificate... ok" \
2707 -c "Ciphersuite is TLS-ECDHE-RSA" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2708 -c "CN=Polarssl Test EC CA" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2709 -s "key types: Opaque, Opaque" \
2710 -s "Ciphersuite is TLS-ECDHE-RSA" \
2711 -S "error" \
2712 -C "error"
2713
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2714requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2715requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2716requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2717requires_hash_alg SHA_384
Neil Armstrongc67e6e92022-07-01 15:48:10 +0200[diff] [blame]2718requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2719run_test "Opaque keys for server authentication: EC + RSA, force DHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2720 "$P_SRV auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2721 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none \
2722 crt_file2=$DATA_FILES_PATH/server4.crt \
2723 key_file2=$DATA_FILES_PATH/server4.key key_opaque_algs2=rsa-sign-pkcs1,none" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2724 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2725 0 \
2726 -c "Verifying peer X.509 certificate... ok" \
2727 -c "Ciphersuite is TLS-DHE-RSA" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2728 -c "CN=Polarssl Test EC CA" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2729 -s "key types: Opaque, Opaque" \
2730 -s "Ciphersuite is TLS-DHE-RSA" \
2731 -S "error" \
2732 -C "error"
2733
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2734# Test using an EC opaque private key for client/server authentication
Przemyslaw Stekiel575f23c2021-10-06 11:31:49 +0200[diff] [blame]2735requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2736requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]2737requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2738requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2739run_test "Opaque key for client/server authentication: ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2740 "$P_SRV force_version=tls12 auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2741 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none" \
2742 "$P_CLI key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2743 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none" \
Przemyslaw Stekiel575f23c2021-10-06 11:31:49 +0200[diff] [blame]2744 0 \
2745 -c "key type: Opaque" \
2746 -c "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2747 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Gilles Peskine05bf89d2022-01-25 17:50:25 +0100[diff] [blame]2748 -s "key types: Opaque, none" \
Przemyslaw Stekiel575f23c2021-10-06 11:31:49 +0200[diff] [blame]2749 -s "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2750 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]2751 -S "error" \
2752 -C "error"
2753
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2754# Test using a RSA opaque private key for client/server authentication
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2755requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2756requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2757requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2758requires_hash_alg SHA_256
valeriof27472b2023-03-09 16:19:35 +0100[diff] [blame]2759requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2760run_test "Opaque key for client/server authentication: ECDHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2761 "$P_SRV auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2762 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
2763 "$P_CLI force_version=tls12 key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2764 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2765 0 \
2766 -c "key type: Opaque" \
2767 -c "Verifying peer X.509 certificate... ok" \
2768 -c "Ciphersuite is TLS-ECDHE-RSA" \
2769 -s "key types: Opaque, none" \
2770 -s "Verifying peer X.509 certificate... ok" \
2771 -s "Ciphersuite is TLS-ECDHE-RSA" \
2772 -S "error" \
2773 -C "error"
2774
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2775requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2776requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2777requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2778requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2779run_test "Opaque key for client/server authentication: DHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2780 "$P_SRV auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2781 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
2782 "$P_CLI key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2783 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2784 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2785 0 \
2786 -c "key type: Opaque" \
2787 -c "Verifying peer X.509 certificate... ok" \
2788 -c "Ciphersuite is TLS-DHE-RSA" \
2789 -s "key types: Opaque, none" \
2790 -s "Verifying peer X.509 certificate... ok" \
2791 -s "Ciphersuite is TLS-DHE-RSA" \
2792 -S "error" \
2793 -C "error"
2794
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2795
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]2796# Test ciphersuites which we expect to be fully supported by PSA Crypto
2797# and check that we don't fall back to Mbed TLS' internal crypto primitives.
2798run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CCM
2799run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8
2800run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CCM
2801run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CCM-8
2802run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256
2803run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384
2804run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA
2805run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256
2806run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384
2807
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2808requires_config_enabled PSA_WANT_ECC_SECP_R1_521
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2809run_test_psa_force_curve "secp521r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2810requires_config_enabled PSA_WANT_ECC_BRAINPOOL_P_R1_512
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2811run_test_psa_force_curve "brainpoolP512r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2812requires_config_enabled PSA_WANT_ECC_SECP_R1_384
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2813run_test_psa_force_curve "secp384r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2814requires_config_enabled PSA_WANT_ECC_BRAINPOOL_P_R1_384
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2815run_test_psa_force_curve "brainpoolP384r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2816requires_config_enabled PSA_WANT_ECC_SECP_R1_256
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2817run_test_psa_force_curve "secp256r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2818requires_config_enabled PSA_WANT_ECC_SECP_K1_256
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2819run_test_psa_force_curve "secp256k1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2820requires_config_enabled PSA_WANT_ECC_BRAINPOOL_P_R1_256
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2821run_test_psa_force_curve "brainpoolP256r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2822requires_config_enabled PSA_WANT_ECC_SECP_R1_224
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2823run_test_psa_force_curve "secp224r1"
Gilles Peskinedefdc3b2021-03-23 13:59:58 +0100[diff] [blame]2824## SECP224K1 is buggy via the PSA API
Dave Rodgman017a1992022-03-31 14:07:01 +0100[diff] [blame]2825## (https://github.com/Mbed-TLS/mbedtls/issues/3541),
Gilles Peskinedefdc3b2021-03-23 13:59:58 +0100[diff] [blame]2826## so it is disabled in PSA even when it's enabled in Mbed TLS.
2827## The proper dependency would be on PSA_WANT_ECC_SECP_K1_224 but
2828## dependencies on PSA symbols in ssl-opt.sh are not implemented yet.
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2829#requires_config_enabled PSA_WANT_ECC_SECP_K1_224
Gilles Peskinedefdc3b2021-03-23 13:59:58 +0100[diff] [blame]2830#run_test_psa_force_curve "secp224k1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2831requires_config_enabled PSA_WANT_ECC_SECP_R1_192
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2832run_test_psa_force_curve "secp192r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2833requires_config_enabled PSA_WANT_ECC_SECP_K1_192
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2834run_test_psa_force_curve "secp192k1"
2835
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]2836# Test current time in ServerHello
2837requires_config_enabled MBEDTLS_HAVE_TIME
2838run_test "ServerHello contains gmt_unix_time" \
2839 "$P_SRV debug_level=3" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2840 "$P_CLI force_version=tls12 debug_level=3" \
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]2841 0 \
2842 -f "check_server_hello_time" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]2843 -F "check_server_hello_time"
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]2844
2845# Test for uniqueness of IVs in AEAD ciphersuites
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2846run_test "Unique IV in GCM" \
2847 "$P_SRV exchanges=20 debug_level=4" \
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]2848 "$P_CLI exchanges=20 debug_level=4 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2849 0 \
2850 -u "IV used" \
2851 -U "IV used"
2852
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]2853# Test for correctness of sent single supported algorithm
Gilles Peskine07e24e92024-09-07 19:50:17 +0200[diff] [blame]2854requires_any_configs_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED \
2855 PSA_WANT_ECC_SECP_R1_256
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]2856requires_config_enabled MBEDTLS_DEBUG_C
2857requires_config_enabled MBEDTLS_SSL_CLI_C
Paul Elliott3b4ceda2022-11-17 12:47:10 +0000[diff] [blame]2858requires_config_enabled MBEDTLS_SSL_SRV_C
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]2859requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
2860requires_pk_alg "ECDSA"
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]2861requires_hash_alg SHA_256
Paul Elliottf6e342c2022-11-17 12:50:29 +0000[diff] [blame]2862run_test "Single supported algorithm sending: mbedtls client" \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]2863 "$P_SRV sig_algs=ecdsa_secp256r1_sha256 auth_mode=required" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2864 "$P_CLI force_version=tls12 sig_algs=ecdsa_secp256r1_sha256 debug_level=3" \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]2865 0 \
2866 -c "Supported Signature Algorithm found: 04 03"
2867
Paul Elliottf6e342c2022-11-17 12:50:29 +0000[diff] [blame]2868requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
2869requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine07e24e92024-09-07 19:50:17 +0200[diff] [blame]2870requires_any_configs_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED \
2871 PSA_WANT_ECC_SECP_R1_256
Paul Elliottf6e342c2022-11-17 12:50:29 +0000[diff] [blame]2872requires_hash_alg SHA_256
2873run_test "Single supported algorithm sending: openssl client" \
2874 "$P_SRV sig_algs=ecdsa_secp256r1_sha256 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2875 "$O_CLI -cert $DATA_FILES_PATH/server6.crt \
2876 -key $DATA_FILES_PATH/server6.key" \
Paul Elliottf6e342c2022-11-17 12:50:29 +0000[diff] [blame]2877 0
2878
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]2879# Tests for certificate verification callback
2880run_test "Configuration-specific CRT verification callback" \
2881 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnarddee6ffa2024-08-16 09:53:41 +0200[diff] [blame]2882 "$P_CLI context_crt_cb=0 debug_level=3" \
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]2883 0 \
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]2884 -S "error" \
2885 -c "Verify requested for " \
2886 -c "Use configuration-specific verification callback" \
2887 -C "Use context-specific verification callback" \
2888 -C "error"
2889
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]2890run_test "Context-specific CRT verification callback" \
2891 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnarddee6ffa2024-08-16 09:53:41 +0200[diff] [blame]2892 "$P_CLI context_crt_cb=1 debug_level=3" \
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]2893 0 \
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]2894 -S "error" \
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]2895 -c "Verify requested for " \
2896 -c "Use context-specific verification callback" \
2897 -C "Use configuration-specific verification callback" \
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]2898 -C "error"
2899
Manuel Pégourié-Gonnardc1da6642014-02-25 14:18:30 +0100[diff] [blame]2900# Tests for SHA-1 support
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]2901requires_hash_alg SHA_1
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2902run_test "SHA-1 forbidden by default in server certificate" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2903 "$P_SRV key_file=$DATA_FILES_PATH/server2.key crt_file=$DATA_FILES_PATH/server2.crt" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2904 "$P_CLI debug_level=2 force_version=tls12 allow_sha1=0" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2905 1 \
2906 -c "The certificate is signed with an unacceptable hash"
2907
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]2908requires_hash_alg SHA_1
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2909run_test "SHA-1 explicitly allowed in server certificate" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2910 "$P_SRV key_file=$DATA_FILES_PATH/server2.key crt_file=$DATA_FILES_PATH/server2.crt" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2911 "$P_CLI force_version=tls12 allow_sha1=1" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2912 0
2913
2914run_test "SHA-256 allowed by default in server certificate" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2915 "$P_SRV key_file=$DATA_FILES_PATH/server2.key crt_file=$DATA_FILES_PATH/server2-sha256.crt" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2916 "$P_CLI force_version=tls12 allow_sha1=0" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2917 0
2918
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]2919requires_hash_alg SHA_1
2920requires_config_enabled MBEDTLS_RSA_C
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2921run_test "SHA-1 forbidden by default in client certificate" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2922 "$P_SRV force_version=tls12 auth_mode=required allow_sha1=0" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2923 "$P_CLI key_file=$DATA_FILES_PATH/cli-rsa.key crt_file=$DATA_FILES_PATH/cli-rsa-sha1.crt" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2924 1 \
2925 -s "The certificate is signed with an unacceptable hash"
2926
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]2927requires_hash_alg SHA_1
2928requires_config_enabled MBEDTLS_RSA_C
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2929run_test "SHA-1 explicitly allowed in client certificate" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2930 "$P_SRV force_version=tls12 auth_mode=required allow_sha1=1" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2931 "$P_CLI key_file=$DATA_FILES_PATH/cli-rsa.key crt_file=$DATA_FILES_PATH/cli-rsa-sha1.crt" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2932 0
2933
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]2934requires_config_enabled MBEDTLS_RSA_C
2935requires_hash_alg SHA_256
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2936run_test "SHA-256 allowed by default in client certificate" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2937 "$P_SRV force_version=tls12 auth_mode=required allow_sha1=0" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2938 "$P_CLI key_file=$DATA_FILES_PATH/cli-rsa.key crt_file=$DATA_FILES_PATH/cli-rsa-sha256.crt" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2939 0
2940
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]2941# Tests for datagram packing
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2942requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]2943run_test "DTLS: multiple records in same datagram, client and server" \
2944 "$P_SRV dtls=1 dgram_packing=1 debug_level=2" \
2945 "$P_CLI dtls=1 dgram_packing=1 debug_level=2" \
2946 0 \
2947 -c "next record in same datagram" \
2948 -s "next record in same datagram"
2949
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2950requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]2951run_test "DTLS: multiple records in same datagram, client only" \
2952 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
2953 "$P_CLI dtls=1 dgram_packing=1 debug_level=2" \
2954 0 \
2955 -s "next record in same datagram" \
2956 -C "next record in same datagram"
2957
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2958requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]2959run_test "DTLS: multiple records in same datagram, server only" \
2960 "$P_SRV dtls=1 dgram_packing=1 debug_level=2" \
2961 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
2962 0 \
2963 -S "next record in same datagram" \
2964 -c "next record in same datagram"
2965
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2966requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]2967run_test "DTLS: multiple records in same datagram, neither client nor server" \
2968 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
2969 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
2970 0 \
2971 -S "next record in same datagram" \
2972 -C "next record in same datagram"
2973
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2974# Tests for Context serialization
2975
2976requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2977run_test "Context serialization, client serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]2978 "$P_SRV dtls=1 serialize=0 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2979 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2980 0 \
2981 -c "Deserializing connection..." \
2982 -S "Deserializing connection..."
2983
2984requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2985run_test "Context serialization, client serializes, ChaChaPoly" \
2986 "$P_SRV dtls=1 serialize=0 exchanges=2" \
2987 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2988 0 \
2989 -c "Deserializing connection..." \
2990 -S "Deserializing connection..."
2991
2992requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2993run_test "Context serialization, client serializes, GCM" \
2994 "$P_SRV dtls=1 serialize=0 exchanges=2" \
2995 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2996 0 \
Jarno Lamsacbee1b32019-06-04 15:18:19 +0300[diff] [blame]2997 -c "Deserializing connection..." \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2998 -S "Deserializing connection..."
2999
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3000requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]3001requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]3002requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3003run_test "Context serialization, client serializes, with CID" \
3004 "$P_SRV dtls=1 serialize=0 exchanges=2 cid=1 cid_val=dead" \
3005 "$P_CLI dtls=1 serialize=1 exchanges=2 cid=1 cid_val=beef" \
3006 0 \
3007 -c "Deserializing connection..." \
3008 -S "Deserializing connection..."
3009
3010requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3011run_test "Context serialization, server serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]3012 "$P_SRV dtls=1 serialize=1 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3013 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3014 0 \
3015 -C "Deserializing connection..." \
3016 -s "Deserializing connection..."
3017
3018requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3019run_test "Context serialization, server serializes, ChaChaPoly" \
3020 "$P_SRV dtls=1 serialize=1 exchanges=2" \
3021 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
3022 0 \
3023 -C "Deserializing connection..." \
3024 -s "Deserializing connection..."
3025
3026requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3027run_test "Context serialization, server serializes, GCM" \
3028 "$P_SRV dtls=1 serialize=1 exchanges=2" \
3029 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]3030 0 \
Jarno Lamsacbee1b32019-06-04 15:18:19 +0300[diff] [blame]3031 -C "Deserializing connection..." \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]3032 -s "Deserializing connection..."
3033
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3034requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]3035requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]3036requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3037run_test "Context serialization, server serializes, with CID" \
3038 "$P_SRV dtls=1 serialize=1 exchanges=2 cid=1 cid_val=dead" \
3039 "$P_CLI dtls=1 serialize=0 exchanges=2 cid=1 cid_val=beef" \
3040 0 \
3041 -C "Deserializing connection..." \
3042 -s "Deserializing connection..."
3043
3044requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3045run_test "Context serialization, both serialize, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]3046 "$P_SRV dtls=1 serialize=1 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3047 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3048 0 \
3049 -c "Deserializing connection..." \
3050 -s "Deserializing connection..."
3051
3052requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3053run_test "Context serialization, both serialize, ChaChaPoly" \
3054 "$P_SRV dtls=1 serialize=1 exchanges=2" \
3055 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
3056 0 \
3057 -c "Deserializing connection..." \
3058 -s "Deserializing connection..."
3059
3060requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3061run_test "Context serialization, both serialize, GCM" \
3062 "$P_SRV dtls=1 serialize=1 exchanges=2" \
3063 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]3064 0 \
Jarno Lamsacbee1b32019-06-04 15:18:19 +0300[diff] [blame]3065 -c "Deserializing connection..." \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]3066 -s "Deserializing connection..."
3067
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3068requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3069requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]3070requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3071run_test "Context serialization, both serialize, with CID" \
3072 "$P_SRV dtls=1 serialize=1 exchanges=2 cid=1 cid_val=dead" \
3073 "$P_CLI dtls=1 serialize=1 exchanges=2 cid=1 cid_val=beef" \
3074 0 \
3075 -c "Deserializing connection..." \
3076 -s "Deserializing connection..."
3077
3078requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3079run_test "Context serialization, re-init, client serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]3080 "$P_SRV dtls=1 serialize=0 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3081 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3082 0 \
3083 -c "Deserializing connection..." \
3084 -S "Deserializing connection..."
3085
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3086requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3087requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3088run_test "Context serialization, re-init, client serializes, ChaChaPoly" \
3089 "$P_SRV dtls=1 serialize=0 exchanges=2" \
3090 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
3091 0 \
3092 -c "Deserializing connection..." \
3093 -S "Deserializing connection..."
3094
3095requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3096run_test "Context serialization, re-init, client serializes, GCM" \
3097 "$P_SRV dtls=1 serialize=0 exchanges=2" \
3098 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3099 0 \
3100 -c "Deserializing connection..." \
3101 -S "Deserializing connection..."
3102
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3103requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3104requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]3105requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3106run_test "Context serialization, re-init, client serializes, with CID" \
3107 "$P_SRV dtls=1 serialize=0 exchanges=2 cid=1 cid_val=dead" \
3108 "$P_CLI dtls=1 serialize=2 exchanges=2 cid=1 cid_val=beef" \
3109 0 \
3110 -c "Deserializing connection..." \
3111 -S "Deserializing connection..."
3112
3113requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3114run_test "Context serialization, re-init, server serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]3115 "$P_SRV dtls=1 serialize=2 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3116 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3117 0 \
3118 -C "Deserializing connection..." \
3119 -s "Deserializing connection..."
3120
3121requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3122run_test "Context serialization, re-init, server serializes, ChaChaPoly" \
3123 "$P_SRV dtls=1 serialize=2 exchanges=2" \
3124 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
3125 0 \
3126 -C "Deserializing connection..." \
3127 -s "Deserializing connection..."
3128
3129requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3130run_test "Context serialization, re-init, server serializes, GCM" \
3131 "$P_SRV dtls=1 serialize=2 exchanges=2" \
3132 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3133 0 \
3134 -C "Deserializing connection..." \
3135 -s "Deserializing connection..."
3136
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3137requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3138requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]3139requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3140run_test "Context serialization, re-init, server serializes, with CID" \
3141 "$P_SRV dtls=1 serialize=2 exchanges=2 cid=1 cid_val=dead" \
3142 "$P_CLI dtls=1 serialize=0 exchanges=2 cid=1 cid_val=beef" \
3143 0 \
3144 -C "Deserializing connection..." \
3145 -s "Deserializing connection..."
3146
3147requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3148run_test "Context serialization, re-init, both serialize, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]3149 "$P_SRV dtls=1 serialize=2 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3150 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3151 0 \
3152 -c "Deserializing connection..." \
3153 -s "Deserializing connection..."
3154
3155requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3156run_test "Context serialization, re-init, both serialize, ChaChaPoly" \
3157 "$P_SRV dtls=1 serialize=2 exchanges=2" \
3158 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
3159 0 \
3160 -c "Deserializing connection..." \
3161 -s "Deserializing connection..."
3162
3163requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3164run_test "Context serialization, re-init, both serialize, GCM" \
3165 "$P_SRV dtls=1 serialize=2 exchanges=2" \
3166 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3167 0 \
3168 -c "Deserializing connection..." \
3169 -s "Deserializing connection..."
3170
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3171requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]3172requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3173requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3174run_test "Context serialization, re-init, both serialize, with CID" \
3175 "$P_SRV dtls=1 serialize=2 exchanges=2 cid=1 cid_val=dead" \
3176 "$P_CLI dtls=1 serialize=2 exchanges=2 cid=1 cid_val=beef" \
3177 0 \
3178 -c "Deserializing connection..." \
3179 -s "Deserializing connection..."
3180
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3181requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Piotr Nowicki3de298f2020-04-16 14:35:19 +0200[diff] [blame]3182requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3183run_test "Saving the serialized context to a file" \
3184 "$P_SRV dtls=1 serialize=1 context_file=context_srv.txt" \
3185 "$P_CLI dtls=1 serialize=1 context_file=context_cli.txt" \
3186 0 \
3187 -s "Save serialized context to a file... ok" \
3188 -c "Save serialized context to a file... ok"
Max Fillinger9c3a7ba2024-11-11 17:50:34 +0100[diff] [blame]3189
3190requires_config_enabled MBEDTLS_SSL_KEYING_MATERIAL_EXPORT
3191requires_protocol_version tls12
3192run_test_export_keying_material tls12
3193
3194requires_config_enabled MBEDTLS_SSL_KEYING_MATERIAL_EXPORT
3195requires_protocol_version tls12
3196run_test_export_keying_material_openssl_compat tls12
3197
3198requires_config_enabled MBEDTLS_SSL_KEYING_MATERIAL_EXPORT
3199requires_protocol_version tls13
3200run_test_export_keying_material tls13
3201
3202requires_config_enabled MBEDTLS_SSL_KEYING_MATERIAL_EXPORT
3203requires_protocol_version tls13
3204run_test_export_keying_material_openssl_compat tls13
3205
Piotr Nowicki3de298f2020-04-16 14:35:19 +0200[diff] [blame]3206rm -f context_srv.txt
3207rm -f context_cli.txt
3208
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3209# Tests for DTLS Connection ID extension
3210
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3211# So far, the CID API isn't implemented, so we can't
3212# grep for output witnessing its use. This needs to be
3213# changed once the CID extension is implemented.
3214
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3215requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3216requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3217run_test "Connection ID: Cli enabled, Srv disabled" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3218 "$P_SRV debug_level=3 dtls=1 cid=0" \
3219 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3220 0 \
3221 -s "Disable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3222 -s "found CID extension" \
3223 -s "Client sent CID extension, but CID disabled" \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3224 -c "Enable use of CID extension." \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3225 -c "client hello, adding CID extension" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3226 -S "server hello, adding CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3227 -C "found CID extension" \
3228 -S "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]3229 -C "Copy CIDs into SSL transform" \
3230 -c "Use of Connection ID was rejected by the server"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3231
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3232requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3233requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3234run_test "Connection ID: Cli disabled, Srv enabled" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3235 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3236 "$P_CLI debug_level=3 dtls=1 cid=0" \
3237 0 \
3238 -c "Disable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3239 -C "client hello, adding CID extension" \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3240 -S "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3241 -s "Enable use of CID extension." \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3242 -S "server hello, adding CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3243 -C "found CID extension" \
3244 -S "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]3245 -C "Copy CIDs into SSL transform" \
Hanno Beckerb3e9dd52019-05-08 13:19:53 +0100[diff] [blame]3246 -s "Use of Connection ID was not offered by client"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3247
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3248requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3249requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3250run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID nonempty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3251 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead" \
3252 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef" \
3253 0 \
3254 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3255 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3256 -c "client hello, adding CID extension" \
3257 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3258 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3259 -s "server hello, adding CID extension" \
3260 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3261 -c "Use of CID extension negotiated" \
3262 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3263 -c "Copy CIDs into SSL transform" \
3264 -c "Peer CID (length 2 Bytes): de ad" \
3265 -s "Peer CID (length 2 Bytes): be ef" \
3266 -s "Use of Connection ID has been negotiated" \
3267 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3268
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3269requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3270requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3271run_test "Connection ID, 3D: Cli+Srv enabled, Cli+Srv CID nonempty" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3272 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3273 "$P_SRV debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=dead" \
3274 "$P_CLI debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=beef" \
3275 0 \
3276 -c "Enable use of CID extension." \
3277 -s "Enable use of CID extension." \
3278 -c "client hello, adding CID extension" \
3279 -s "found CID extension" \
3280 -s "Use of CID extension negotiated" \
3281 -s "server hello, adding CID extension" \
3282 -c "found CID extension" \
3283 -c "Use of CID extension negotiated" \
3284 -s "Copy CIDs into SSL transform" \
3285 -c "Copy CIDs into SSL transform" \
3286 -c "Peer CID (length 2 Bytes): de ad" \
3287 -s "Peer CID (length 2 Bytes): be ef" \
3288 -s "Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3289 -c "Use of Connection ID has been negotiated" \
3290 -c "ignoring unexpected CID" \
3291 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3292
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3293requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3294requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3295run_test "Connection ID, MTU: Cli+Srv enabled, Cli+Srv CID nonempty" \
3296 -p "$P_PXY mtu=800" \
3297 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead" \
3298 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef" \
3299 0 \
3300 -c "Enable use of CID extension." \
3301 -s "Enable use of CID extension." \
3302 -c "client hello, adding CID extension" \
3303 -s "found CID extension" \
3304 -s "Use of CID extension negotiated" \
3305 -s "server hello, adding CID extension" \
3306 -c "found CID extension" \
3307 -c "Use of CID extension negotiated" \
3308 -s "Copy CIDs into SSL transform" \
3309 -c "Copy CIDs into SSL transform" \
3310 -c "Peer CID (length 2 Bytes): de ad" \
3311 -s "Peer CID (length 2 Bytes): be ef" \
3312 -s "Use of Connection ID has been negotiated" \
3313 -c "Use of Connection ID has been negotiated"
3314
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3315requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3316requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3317run_test "Connection ID, 3D+MTU: Cli+Srv enabled, Cli+Srv CID nonempty" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3318 -p "$P_PXY mtu=800 drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3319 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead" \
3320 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef" \
3321 0 \
3322 -c "Enable use of CID extension." \
3323 -s "Enable use of CID extension." \
3324 -c "client hello, adding CID extension" \
3325 -s "found CID extension" \
3326 -s "Use of CID extension negotiated" \
3327 -s "server hello, adding CID extension" \
3328 -c "found CID extension" \
3329 -c "Use of CID extension negotiated" \
3330 -s "Copy CIDs into SSL transform" \
3331 -c "Copy CIDs into SSL transform" \
3332 -c "Peer CID (length 2 Bytes): de ad" \
3333 -s "Peer CID (length 2 Bytes): be ef" \
3334 -s "Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3335 -c "Use of Connection ID has been negotiated" \
3336 -c "ignoring unexpected CID" \
3337 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3338
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3339requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3340requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3341run_test "Connection ID: Cli+Srv enabled, Cli CID empty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3342 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3343 "$P_CLI debug_level=3 dtls=1 cid=1" \
3344 0 \
3345 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3346 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3347 -c "client hello, adding CID extension" \
3348 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3349 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3350 -s "server hello, adding CID extension" \
3351 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3352 -c "Use of CID extension negotiated" \
3353 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3354 -c "Copy CIDs into SSL transform" \
3355 -c "Peer CID (length 4 Bytes): de ad be ef" \
3356 -s "Peer CID (length 0 Bytes):" \
3357 -s "Use of Connection ID has been negotiated" \
3358 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3359
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3360requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3361requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3362run_test "Connection ID: Cli+Srv enabled, Srv CID empty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3363 "$P_SRV debug_level=3 dtls=1 cid=1" \
3364 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3365 0 \
3366 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3367 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3368 -c "client hello, adding CID extension" \
3369 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3370 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3371 -s "server hello, adding CID extension" \
3372 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3373 -c "Use of CID extension negotiated" \
3374 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3375 -c "Copy CIDs into SSL transform" \
3376 -s "Peer CID (length 4 Bytes): de ad be ef" \
3377 -c "Peer CID (length 0 Bytes):" \
3378 -s "Use of Connection ID has been negotiated" \
3379 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3380
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3381requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3382requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3383run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID empty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3384 "$P_SRV debug_level=3 dtls=1 cid=1" \
3385 "$P_CLI debug_level=3 dtls=1 cid=1" \
3386 0 \
3387 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3388 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3389 -c "client hello, adding CID extension" \
3390 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3391 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3392 -s "server hello, adding CID extension" \
3393 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3394 -c "Use of CID extension negotiated" \
3395 -s "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]3396 -c "Copy CIDs into SSL transform" \
3397 -S "Use of Connection ID has been negotiated" \
3398 -C "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3399
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3400requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3401run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID nonempty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3402 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead" \
3403 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3404 0 \
3405 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3406 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3407 -c "client hello, adding CID extension" \
3408 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3409 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3410 -s "server hello, adding CID extension" \
3411 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3412 -c "Use of CID extension negotiated" \
3413 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3414 -c "Copy CIDs into SSL transform" \
3415 -c "Peer CID (length 2 Bytes): de ad" \
3416 -s "Peer CID (length 2 Bytes): be ef" \
3417 -s "Use of Connection ID has been negotiated" \
3418 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3419
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3420requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3421run_test "Connection ID: Cli+Srv enabled, Cli CID empty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3422 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3423 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3424 0 \
3425 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3426 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3427 -c "client hello, adding CID extension" \
3428 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3429 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3430 -s "server hello, adding CID extension" \
3431 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3432 -c "Use of CID extension negotiated" \
3433 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3434 -c "Copy CIDs into SSL transform" \
3435 -c "Peer CID (length 4 Bytes): de ad be ef" \
3436 -s "Peer CID (length 0 Bytes):" \
3437 -s "Use of Connection ID has been negotiated" \
3438 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3439
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3440requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3441run_test "Connection ID: Cli+Srv enabled, Srv CID empty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3442 "$P_SRV debug_level=3 dtls=1 cid=1" \
3443 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3444 0 \
3445 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3446 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3447 -c "client hello, adding CID extension" \
3448 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3449 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3450 -s "server hello, adding CID extension" \
3451 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3452 -c "Use of CID extension negotiated" \
3453 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3454 -c "Copy CIDs into SSL transform" \
3455 -s "Peer CID (length 4 Bytes): de ad be ef" \
3456 -c "Peer CID (length 0 Bytes):" \
3457 -s "Use of Connection ID has been negotiated" \
3458 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3459
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3460requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3461run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID empty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3462 "$P_SRV debug_level=3 dtls=1 cid=1" \
3463 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3464 0 \
3465 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3466 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3467 -c "client hello, adding CID extension" \
3468 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3469 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3470 -s "server hello, adding CID extension" \
3471 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3472 -c "Use of CID extension negotiated" \
3473 -s "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]3474 -c "Copy CIDs into SSL transform" \
3475 -S "Use of Connection ID has been negotiated" \
3476 -C "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3477
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3478requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3479run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID nonempty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3480 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead" \
3481 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
3482 0 \
3483 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3484 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3485 -c "client hello, adding CID extension" \
3486 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3487 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3488 -s "server hello, adding CID extension" \
3489 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3490 -c "Use of CID extension negotiated" \
3491 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3492 -c "Copy CIDs into SSL transform" \
3493 -c "Peer CID (length 2 Bytes): de ad" \
3494 -s "Peer CID (length 2 Bytes): be ef" \
3495 -s "Use of Connection ID has been negotiated" \
3496 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3497
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3498requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3499run_test "Connection ID: Cli+Srv enabled, Cli CID empty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3500 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3501 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
3502 0 \
3503 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3504 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3505 -c "client hello, adding CID extension" \
3506 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3507 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3508 -s "server hello, adding CID extension" \
3509 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3510 -c "Use of CID extension negotiated" \
3511 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3512 -c "Copy CIDs into SSL transform" \
3513 -c "Peer CID (length 4 Bytes): de ad be ef" \
3514 -s "Peer CID (length 0 Bytes):" \
3515 -s "Use of Connection ID has been negotiated" \
3516 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3517
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3518requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3519run_test "Connection ID: Cli+Srv enabled, Srv CID empty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3520 "$P_SRV debug_level=3 dtls=1 cid=1" \
3521 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
3522 0 \
3523 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3524 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3525 -c "client hello, adding CID extension" \
3526 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3527 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3528 -s "server hello, adding CID extension" \
3529 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3530 -c "Use of CID extension negotiated" \
3531 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3532 -c "Copy CIDs into SSL transform" \
3533 -s "Peer CID (length 4 Bytes): de ad be ef" \
3534 -c "Peer CID (length 0 Bytes):" \
3535 -s "Use of Connection ID has been negotiated" \
3536 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3537
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3538requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3539run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID empty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3540 "$P_SRV debug_level=3 dtls=1 cid=1" \
3541 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
3542 0 \
3543 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3544 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3545 -c "client hello, adding CID extension" \
3546 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3547 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3548 -s "server hello, adding CID extension" \
3549 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3550 -c "Use of CID extension negotiated" \
3551 -s "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]3552 -c "Copy CIDs into SSL transform" \
3553 -S "Use of Connection ID has been negotiated" \
3554 -C "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3555
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3556requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3557requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker9bae30d2019-04-23 11:52:44 +0100[diff] [blame]3558requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3559run_test "Connection ID: Cli+Srv enabled, renegotiate without change of CID" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3560 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead renegotiation=1" \
3561 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef renegotiation=1 renegotiate=1" \
3562 0 \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3563 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3564 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3565 -s "(initial handshake) Use of Connection ID has been negotiated" \
3566 -c "(initial handshake) Use of Connection ID has been negotiated" \
3567 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3568 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3569 -s "(after renegotiation) Use of Connection ID has been negotiated" \
3570 -c "(after renegotiation) Use of Connection ID has been negotiated"
3571
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3572requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3573requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3574requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3575run_test "Connection ID: Cli+Srv enabled, renegotiate with different CID" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3576 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_val_renego=beef renegotiation=1" \
3577 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_val_renego=dead renegotiation=1 renegotiate=1" \
3578 0 \
3579 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3580 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3581 -s "(initial handshake) Use of Connection ID has been negotiated" \
3582 -c "(initial handshake) Use of Connection ID has been negotiated" \
3583 -c "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3584 -s "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3585 -s "(after renegotiation) Use of Connection ID has been negotiated" \
3586 -c "(after renegotiation) Use of Connection ID has been negotiated"
3587
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3588requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3589requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3590requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3591run_test "Connection ID, no packing: Cli+Srv enabled, renegotiate with different CID" \
3592 "$P_SRV debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=dead cid_val_renego=beef renegotiation=1" \
3593 "$P_CLI debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=beef cid_val_renego=dead renegotiation=1 renegotiate=1" \
3594 0 \
3595 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3596 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3597 -s "(initial handshake) Use of Connection ID has been negotiated" \
3598 -c "(initial handshake) Use of Connection ID has been negotiated" \
3599 -c "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3600 -s "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3601 -s "(after renegotiation) Use of Connection ID has been negotiated" \
3602 -c "(after renegotiation) Use of Connection ID has been negotiated"
3603
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3604requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3605requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3606requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3607run_test "Connection ID, 3D+MTU: Cli+Srv enabled, renegotiate with different CID" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3608 -p "$P_PXY mtu=800 drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3609 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead cid_val_renego=beef renegotiation=1" \
3610 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef cid_val_renego=dead renegotiation=1 renegotiate=1" \
3611 0 \
3612 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3613 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3614 -s "(initial handshake) Use of Connection ID has been negotiated" \
3615 -c "(initial handshake) Use of Connection ID has been negotiated" \
3616 -c "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3617 -s "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3618 -s "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3619 -c "(after renegotiation) Use of Connection ID has been negotiated" \
3620 -c "ignoring unexpected CID" \
3621 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3622
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3623requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3624requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3625requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
3626run_test "Connection ID: Cli+Srv enabled, renegotiate without CID" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3627 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
3628 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
3629 0 \
3630 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3631 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3632 -s "(initial handshake) Use of Connection ID has been negotiated" \
3633 -c "(initial handshake) Use of Connection ID has been negotiated" \
3634 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3635 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3636 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3637 -S "(after renegotiation) Use of Connection ID has been negotiated"
3638
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3639requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3640requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3641requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3642run_test "Connection ID, no packing: Cli+Srv enabled, renegotiate without CID" \
3643 "$P_SRV debug_level=3 dtls=1 dgram_packing=0 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
3644 "$P_CLI debug_level=3 dtls=1 dgram_packing=0 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
3645 0 \
3646 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3647 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3648 -s "(initial handshake) Use of Connection ID has been negotiated" \
3649 -c "(initial handshake) Use of Connection ID has been negotiated" \
3650 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3651 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3652 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3653 -S "(after renegotiation) Use of Connection ID has been negotiated"
3654
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3655requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3656requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3657requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3658run_test "Connection ID, 3D+MTU: Cli+Srv enabled, renegotiate without CID" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3659 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3660 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
3661 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
3662 0 \
3663 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3664 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3665 -s "(initial handshake) Use of Connection ID has been negotiated" \
3666 -c "(initial handshake) Use of Connection ID has been negotiated" \
3667 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3668 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3669 -C "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3670 -S "(after renegotiation) Use of Connection ID has been negotiated" \
3671 -c "ignoring unexpected CID" \
3672 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3673
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3674requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3675requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3676requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
3677run_test "Connection ID: Cli+Srv enabled, CID on renegotiation" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3678 "$P_SRV debug_level=3 dtls=1 cid=0 cid_renego=1 cid_val_renego=dead renegotiation=1" \
3679 "$P_CLI debug_level=3 dtls=1 cid=0 cid_renego=1 cid_val_renego=beef renegotiation=1 renegotiate=1" \
3680 0 \
3681 -S "(initial handshake) Use of Connection ID has been negotiated" \
3682 -C "(initial handshake) Use of Connection ID has been negotiated" \
3683 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3684 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3685 -c "(after renegotiation) Use of Connection ID has been negotiated" \
3686 -s "(after renegotiation) Use of Connection ID has been negotiated"
3687
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3688requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3689requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3690requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3691run_test "Connection ID, no packing: Cli+Srv enabled, CID on renegotiation" \
3692 "$P_SRV debug_level=3 dtls=1 dgram_packing=0 cid=0 cid_renego=1 cid_val_renego=dead renegotiation=1" \
3693 "$P_CLI debug_level=3 dtls=1 dgram_packing=0 cid=0 cid_renego=1 cid_val_renego=beef renegotiation=1 renegotiate=1" \
3694 0 \
3695 -S "(initial handshake) Use of Connection ID has been negotiated" \
3696 -C "(initial handshake) Use of Connection ID has been negotiated" \
3697 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3698 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3699 -c "(after renegotiation) Use of Connection ID has been negotiated" \
3700 -s "(after renegotiation) Use of Connection ID has been negotiated"
3701
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3702requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3703requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3704requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3705run_test "Connection ID, 3D+MTU: Cli+Srv enabled, CID on renegotiation" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3706 -p "$P_PXY mtu=800 drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3707 "$P_SRV debug_level=3 mtu=800 dtls=1 dgram_packing=1 cid=0 cid_renego=1 cid_val_renego=dead renegotiation=1" \
3708 "$P_CLI debug_level=3 mtu=800 dtls=1 dgram_packing=1 cid=0 cid_renego=1 cid_val_renego=beef renegotiation=1 renegotiate=1" \
3709 0 \
3710 -S "(initial handshake) Use of Connection ID has been negotiated" \
3711 -C "(initial handshake) Use of Connection ID has been negotiated" \
3712 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3713 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3714 -c "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3715 -s "(after renegotiation) Use of Connection ID has been negotiated" \
3716 -c "ignoring unexpected CID" \
3717 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3718
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3719requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3720requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3721requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
3722run_test "Connection ID: Cli+Srv enabled, Cli disables on renegotiation" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3723 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead renegotiation=1" \
3724 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
3725 0 \
3726 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3727 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3728 -s "(initial handshake) Use of Connection ID has been negotiated" \
3729 -c "(initial handshake) Use of Connection ID has been negotiated" \
3730 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3731 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3732 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3733 -S "(after renegotiation) Use of Connection ID has been negotiated" \
3734 -s "(after renegotiation) Use of Connection ID was not offered by client"
3735
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3736requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3737requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3738requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3739run_test "Connection ID, 3D: Cli+Srv enabled, Cli disables on renegotiation" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3740 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3741 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead renegotiation=1" \
3742 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
3743 0 \
3744 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3745 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3746 -s "(initial handshake) Use of Connection ID has been negotiated" \
3747 -c "(initial handshake) Use of Connection ID has been negotiated" \
3748 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3749 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3750 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3751 -S "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3752 -s "(after renegotiation) Use of Connection ID was not offered by client" \
3753 -c "ignoring unexpected CID" \
3754 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3755
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3756requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3757requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3758requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
3759run_test "Connection ID: Cli+Srv enabled, Srv disables on renegotiation" \
3760 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
3761 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef renegotiation=1 renegotiate=1" \
3762 0 \
3763 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3764 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3765 -s "(initial handshake) Use of Connection ID has been negotiated" \
3766 -c "(initial handshake) Use of Connection ID has been negotiated" \
3767 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3768 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3769 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3770 -S "(after renegotiation) Use of Connection ID has been negotiated" \
3771 -c "(after renegotiation) Use of Connection ID was rejected by the server"
3772
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3773requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3774requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3775requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
3776run_test "Connection ID, 3D: Cli+Srv enabled, Srv disables on renegotiation" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3777 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3778 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
3779 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef renegotiation=1 renegotiate=1" \
3780 0 \
3781 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3782 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3783 -s "(initial handshake) Use of Connection ID has been negotiated" \
3784 -c "(initial handshake) Use of Connection ID has been negotiated" \
3785 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3786 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3787 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3788 -S "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3789 -c "(after renegotiation) Use of Connection ID was rejected by the server" \
3790 -c "ignoring unexpected CID" \
3791 -s "ignoring unexpected CID"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3792
Yuto Takano3fa16732021-07-09 11:21:43 +0100[diff] [blame]3793# This and the test below it require MAX_CONTENT_LEN to be at least MFL+1, because the
Yuto Takano9c09d552021-07-08 16:03:44 +0100[diff] [blame]3794# tests check that the buffer contents are reallocated when the message is
3795# larger than the buffer.
Andrzej Kurekb6577832020-06-08 07:08:03 -0400[diff] [blame]3796requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3797requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
Yuto Takano9c09d552021-07-08 16:03:44 +0100[diff] [blame]3798requires_max_content_len 513
Andrzej Kurekb6577832020-06-08 07:08:03 -0400[diff] [blame]3799run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=512" \
3800 "$P_SRV dtls=1 cid=1 cid_val=dead debug_level=2" \
3801 "$P_CLI force_ciphersuite="TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" max_frag_len=512 dtls=1 cid=1 cid_val=beef" \
3802 0 \
3803 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3804 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3805 -s "(initial handshake) Use of Connection ID has been negotiated" \
3806 -c "(initial handshake) Use of Connection ID has been negotiated" \
3807 -s "Reallocating in_buf" \
3808 -s "Reallocating out_buf"
3809
3810requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3811requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
Yuto Takano9c09d552021-07-08 16:03:44 +0100[diff] [blame]3812requires_max_content_len 1025
Andrzej Kurekb6577832020-06-08 07:08:03 -0400[diff] [blame]3813run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=1024" \
3814 "$P_SRV dtls=1 cid=1 cid_val=dead debug_level=2" \
3815 "$P_CLI force_ciphersuite="TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" max_frag_len=1024 dtls=1 cid=1 cid_val=beef" \
3816 0 \
3817 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3818 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3819 -s "(initial handshake) Use of Connection ID has been negotiated" \
3820 -c "(initial handshake) Use of Connection ID has been negotiated" \
3821 -s "Reallocating in_buf" \
3822 -s "Reallocating out_buf"
3823
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]3824# Tests for Encrypt-then-MAC extension
3825
3826run_test "Encrypt then MAC: default" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]3827 "$P_SRV debug_level=3 \
3828 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]3829 "$P_CLI debug_level=3" \
3830 0 \
3831 -c "client hello, adding encrypt_then_mac extension" \
3832 -s "found encrypt then mac extension" \
3833 -s "server hello, adding encrypt then mac extension" \
3834 -c "found encrypt_then_mac extension" \
3835 -c "using encrypt then mac" \
3836 -s "using encrypt then mac"
3837
3838run_test "Encrypt then MAC: client enabled, server disabled" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]3839 "$P_SRV debug_level=3 etm=0 \
3840 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]3841 "$P_CLI debug_level=3 etm=1" \
3842 0 \
3843 -c "client hello, adding encrypt_then_mac extension" \
3844 -s "found encrypt then mac extension" \
3845 -S "server hello, adding encrypt then mac extension" \
3846 -C "found encrypt_then_mac extension" \
3847 -C "using encrypt then mac" \
3848 -S "using encrypt then mac"
3849
Manuel Pégourié-Gonnard78e745f2014-11-04 15:44:06 +0100[diff] [blame]3850run_test "Encrypt then MAC: client enabled, aead cipher" \
3851 "$P_SRV debug_level=3 etm=1 \
3852 force_ciphersuite=TLS-RSA-WITH-AES-128-GCM-SHA256" \
3853 "$P_CLI debug_level=3 etm=1" \
3854 0 \
3855 -c "client hello, adding encrypt_then_mac extension" \
3856 -s "found encrypt then mac extension" \
3857 -S "server hello, adding encrypt then mac extension" \
3858 -C "found encrypt_then_mac extension" \
3859 -C "using encrypt then mac" \
3860 -S "using encrypt then mac"
3861
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]3862run_test "Encrypt then MAC: client disabled, server enabled" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]3863 "$P_SRV debug_level=3 etm=1 \
3864 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]3865 "$P_CLI debug_level=3 etm=0" \
3866 0 \
3867 -C "client hello, adding encrypt_then_mac extension" \
3868 -S "found encrypt then mac extension" \
3869 -S "server hello, adding encrypt then mac extension" \
3870 -C "found encrypt_then_mac extension" \
3871 -C "using encrypt then mac" \
3872 -S "using encrypt then mac"
3873
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3874# Tests for Extended Master Secret extension
3875
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]3876requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3877run_test "Extended Master Secret: default" \
3878 "$P_SRV debug_level=3" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3879 "$P_CLI force_version=tls12 debug_level=3" \
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3880 0 \
3881 -c "client hello, adding extended_master_secret extension" \
3882 -s "found extended master secret extension" \
3883 -s "server hello, adding extended master secret extension" \
3884 -c "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3885 -c "session hash for extended master secret" \
3886 -s "session hash for extended master secret"
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3887
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]3888requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3889run_test "Extended Master Secret: client enabled, server disabled" \
3890 "$P_SRV debug_level=3 extended_ms=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3891 "$P_CLI force_version=tls12 debug_level=3 extended_ms=1" \
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3892 0 \
3893 -c "client hello, adding extended_master_secret extension" \
3894 -s "found extended master secret extension" \
3895 -S "server hello, adding extended master secret extension" \
3896 -C "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3897 -C "session hash for extended master secret" \
3898 -S "session hash for extended master secret"
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3899
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]3900requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3901run_test "Extended Master Secret: client disabled, server enabled" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3902 "$P_SRV force_version=tls12 debug_level=3 extended_ms=1" \
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3903 "$P_CLI debug_level=3 extended_ms=0" \
3904 0 \
3905 -C "client hello, adding extended_master_secret extension" \
3906 -S "found extended master secret extension" \
3907 -S "server hello, adding extended master secret extension" \
3908 -C "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3909 -C "session hash for extended master secret" \
3910 -S "session hash for extended master secret"
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3911
Andres Amaya Garcia4c761fa2018-07-10 20:08:04 +0100[diff] [blame]3912# Test sending and receiving empty application data records
3913
3914run_test "Encrypt then MAC: empty application data record" \
3915 "$P_SRV auth_mode=none debug_level=4 etm=1" \
3916 "$P_CLI auth_mode=none etm=1 request_size=0 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA" \
3917 0 \
3918 -S "0000: 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f" \
3919 -s "dumping 'input payload after decrypt' (0 bytes)" \
3920 -c "0 bytes written in 1 fragments"
3921
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3922requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9e2c80f2020-03-24 10:53:39 +0100[diff] [blame]3923run_test "Encrypt then MAC: disabled, empty application data record" \
Andres Amaya Garcia4c761fa2018-07-10 20:08:04 +0100[diff] [blame]3924 "$P_SRV auth_mode=none debug_level=4 etm=0" \
3925 "$P_CLI auth_mode=none etm=0 request_size=0" \
3926 0 \
3927 -s "dumping 'input payload after decrypt' (0 bytes)" \
3928 -c "0 bytes written in 1 fragments"
3929
3930run_test "Encrypt then MAC, DTLS: empty application data record" \
3931 "$P_SRV auth_mode=none debug_level=4 etm=1 dtls=1" \
3932 "$P_CLI auth_mode=none etm=1 request_size=0 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA dtls=1" \
3933 0 \
3934 -S "0000: 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f" \
3935 -s "dumping 'input payload after decrypt' (0 bytes)" \
3936 -c "0 bytes written in 1 fragments"
3937
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3938requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9e2c80f2020-03-24 10:53:39 +0100[diff] [blame]3939run_test "Encrypt then MAC, DTLS: disabled, empty application data record" \
Andres Amaya Garcia4c761fa2018-07-10 20:08:04 +0100[diff] [blame]3940 "$P_SRV auth_mode=none debug_level=4 etm=0 dtls=1" \
3941 "$P_CLI auth_mode=none etm=0 request_size=0 dtls=1" \
3942 0 \
3943 -s "dumping 'input payload after decrypt' (0 bytes)" \
3944 -c "0 bytes written in 1 fragments"
3945
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]3946# Tests for CBC 1/n-1 record splitting
3947
3948run_test "CBC Record splitting: TLS 1.2, no splitting" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]3949 "$P_SRV force_version=tls12" \
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]3950 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]3951 request_size=123" \
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]3952 0 \
3953 -s "Read from client: 123 bytes read" \
3954 -S "Read from client: 1 bytes read" \
3955 -S "122 bytes read"
3956
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]3957# Tests for Session Tickets
3958
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3959requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3960run_test "Session resume using tickets: basic" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3961 "$P_SRV debug_level=3 tickets=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3962 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]3963 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]3964 -c "client hello, adding session ticket extension" \
3965 -s "found session ticket extension" \
3966 -s "server hello, adding session ticket extension" \
3967 -c "found session_ticket extension" \
3968 -c "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]3969 -S "session successfully restored from cache" \
3970 -s "session successfully restored from ticket" \
3971 -s "a session has been resumed" \
3972 -c "a session has been resumed"
3973
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3974requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Glenn Strausse3282452022-02-03 17:23:24 -0500[diff] [blame]3975run_test "Session resume using tickets: manual rotation" \
3976 "$P_SRV debug_level=3 tickets=1 ticket_rotate=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3977 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Glenn Strausse3282452022-02-03 17:23:24 -0500[diff] [blame]3978 0 \
3979 -c "client hello, adding session ticket extension" \
3980 -s "found session ticket extension" \
3981 -s "server hello, adding session ticket extension" \
3982 -c "found session_ticket extension" \
3983 -c "parse new session ticket" \
3984 -S "session successfully restored from cache" \
3985 -s "session successfully restored from ticket" \
3986 -s "a session has been resumed" \
3987 -c "a session has been resumed"
3988
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3989requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3990run_test "Session resume using tickets: cache disabled" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3991 "$P_SRV debug_level=3 tickets=1 cache_max=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3992 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnarddbe1ee12014-02-21 09:18:13 +0100[diff] [blame]3993 0 \
3994 -c "client hello, adding session ticket extension" \
3995 -s "found session ticket extension" \
3996 -s "server hello, adding session ticket extension" \
3997 -c "found session_ticket extension" \
3998 -c "parse new session ticket" \
3999 -S "session successfully restored from cache" \
4000 -s "session successfully restored from ticket" \
4001 -s "a session has been resumed" \
4002 -c "a session has been resumed"
4003
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4004requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4005run_test "Session resume using tickets: timeout" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4006 "$P_SRV debug_level=3 tickets=1 cache_max=0 ticket_timeout=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4007 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1 reco_delay=2000" \
Manuel Pégourié-Gonnarddbe1ee12014-02-21 09:18:13 +0100[diff] [blame]4008 0 \
4009 -c "client hello, adding session ticket extension" \
4010 -s "found session ticket extension" \
4011 -s "server hello, adding session ticket extension" \
4012 -c "found session_ticket extension" \
4013 -c "parse new session ticket" \
4014 -S "session successfully restored from cache" \
4015 -S "session successfully restored from ticket" \
4016 -S "a session has been resumed" \
4017 -C "a session has been resumed"
4018
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4019requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4020run_test "Session resume using tickets: session copy" \
4021 "$P_SRV debug_level=3 tickets=1 cache_max=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4022 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1 reco_mode=0" \
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4023 0 \
4024 -c "client hello, adding session ticket extension" \
4025 -s "found session ticket extension" \
4026 -s "server hello, adding session ticket extension" \
4027 -c "found session_ticket extension" \
4028 -c "parse new session ticket" \
4029 -S "session successfully restored from cache" \
4030 -s "session successfully restored from ticket" \
4031 -s "a session has been resumed" \
4032 -c "a session has been resumed"
4033
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4034requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4035requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4036run_test "Session resume using tickets: openssl server" \
Ronald Croncbd7bfd2022-03-31 18:19:56 +0200[diff] [blame]4037 "$O_SRV -tls1_2" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]4038 "$P_CLI debug_level=3 tickets=1 new_session_tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]4039 0 \
4040 -c "client hello, adding session ticket extension" \
4041 -c "found session_ticket extension" \
4042 -c "parse new session ticket" \
4043 -c "a session has been resumed"
4044
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4045requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4046requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4047run_test "Session resume using tickets: openssl client" \
Gilles Peskinee373c942024-04-29 17:44:19 +0200[diff] [blame]4048 "$P_SRV force_version=tls12 debug_level=3 tickets=1" \
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]4049 "( $O_CLI -sess_out $SESSION; \
4050 $O_CLI -sess_in $SESSION; \
4051 rm -f $SESSION )" \
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]4052 0 \
4053 -s "found session ticket extension" \
4054 -s "server hello, adding session ticket extension" \
4055 -S "session successfully restored from cache" \
4056 -s "session successfully restored from ticket" \
4057 -s "a session has been resumed"
4058
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4059requires_cipher_enabled "AES" "GCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4060requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4061run_test "Session resume using tickets: AES-128-GCM" \
4062 "$P_SRV debug_level=3 tickets=1 ticket_aead=AES-128-GCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4063 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4064 0 \
4065 -c "client hello, adding session ticket extension" \
4066 -s "found session ticket extension" \
4067 -s "server hello, adding session ticket extension" \
4068 -c "found session_ticket extension" \
4069 -c "parse new session ticket" \
4070 -S "session successfully restored from cache" \
4071 -s "session successfully restored from ticket" \
4072 -s "a session has been resumed" \
4073 -c "a session has been resumed"
4074
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4075requires_cipher_enabled "AES" "GCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4076requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4077run_test "Session resume using tickets: AES-192-GCM" \
4078 "$P_SRV debug_level=3 tickets=1 ticket_aead=AES-192-GCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4079 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4080 0 \
4081 -c "client hello, adding session ticket extension" \
4082 -s "found session ticket extension" \
4083 -s "server hello, adding session ticket extension" \
4084 -c "found session_ticket extension" \
4085 -c "parse new session ticket" \
4086 -S "session successfully restored from cache" \
4087 -s "session successfully restored from ticket" \
4088 -s "a session has been resumed" \
4089 -c "a session has been resumed"
4090
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4091requires_cipher_enabled "AES" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4092requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4093run_test "Session resume using tickets: AES-128-CCM" \
4094 "$P_SRV debug_level=3 tickets=1 ticket_aead=AES-128-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4095 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4096 0 \
4097 -c "client hello, adding session ticket extension" \
4098 -s "found session ticket extension" \
4099 -s "server hello, adding session ticket extension" \
4100 -c "found session_ticket extension" \
4101 -c "parse new session ticket" \
4102 -S "session successfully restored from cache" \
4103 -s "session successfully restored from ticket" \
4104 -s "a session has been resumed" \
4105 -c "a session has been resumed"
4106
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4107requires_cipher_enabled "AES" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4108requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4109run_test "Session resume using tickets: AES-192-CCM" \
4110 "$P_SRV debug_level=3 tickets=1 ticket_aead=AES-192-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4111 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4112 0 \
4113 -c "client hello, adding session ticket extension" \
4114 -s "found session ticket extension" \
4115 -s "server hello, adding session ticket extension" \
4116 -c "found session_ticket extension" \
4117 -c "parse new session ticket" \
4118 -S "session successfully restored from cache" \
4119 -s "session successfully restored from ticket" \
4120 -s "a session has been resumed" \
4121 -c "a session has been resumed"
4122
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4123requires_cipher_enabled "AES" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4124requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4125run_test "Session resume using tickets: AES-256-CCM" \
4126 "$P_SRV debug_level=3 tickets=1 ticket_aead=AES-256-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4127 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4128 0 \
4129 -c "client hello, adding session ticket extension" \
4130 -s "found session ticket extension" \
4131 -s "server hello, adding session ticket extension" \
4132 -c "found session_ticket extension" \
4133 -c "parse new session ticket" \
4134 -S "session successfully restored from cache" \
4135 -s "session successfully restored from ticket" \
4136 -s "a session has been resumed" \
4137 -c "a session has been resumed"
4138
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4139requires_cipher_enabled "CAMELLIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4140requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4141run_test "Session resume using tickets: CAMELLIA-128-CCM" \
4142 "$P_SRV debug_level=3 tickets=1 ticket_aead=CAMELLIA-128-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4143 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4144 0 \
4145 -c "client hello, adding session ticket extension" \
4146 -s "found session ticket extension" \
4147 -s "server hello, adding session ticket extension" \
4148 -c "found session_ticket extension" \
4149 -c "parse new session ticket" \
4150 -S "session successfully restored from cache" \
4151 -s "session successfully restored from ticket" \
4152 -s "a session has been resumed" \
4153 -c "a session has been resumed"
4154
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4155requires_cipher_enabled "CAMELLIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4156requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4157run_test "Session resume using tickets: CAMELLIA-192-CCM" \
4158 "$P_SRV debug_level=3 tickets=1 ticket_aead=CAMELLIA-192-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4159 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4160 0 \
4161 -c "client hello, adding session ticket extension" \
4162 -s "found session ticket extension" \
4163 -s "server hello, adding session ticket extension" \
4164 -c "found session_ticket extension" \
4165 -c "parse new session ticket" \
4166 -S "session successfully restored from cache" \
4167 -s "session successfully restored from ticket" \
4168 -s "a session has been resumed" \
4169 -c "a session has been resumed"
4170
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4171requires_cipher_enabled "CAMELLIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4172requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4173run_test "Session resume using tickets: CAMELLIA-256-CCM" \
4174 "$P_SRV debug_level=3 tickets=1 ticket_aead=CAMELLIA-256-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4175 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4176 0 \
4177 -c "client hello, adding session ticket extension" \
4178 -s "found session ticket extension" \
4179 -s "server hello, adding session ticket extension" \
4180 -c "found session_ticket extension" \
4181 -c "parse new session ticket" \
4182 -S "session successfully restored from cache" \
4183 -s "session successfully restored from ticket" \
4184 -s "a session has been resumed" \
4185 -c "a session has been resumed"
4186
Valerio Setti04c85e12023-11-13 10:54:05 +0100[diff] [blame]4187requires_cipher_enabled "ARIA" "GCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4188requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4189run_test "Session resume using tickets: ARIA-128-GCM" \
4190 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-128-GCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4191 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4192 0 \
4193 -c "client hello, adding session ticket extension" \
4194 -s "found session ticket extension" \
4195 -s "server hello, adding session ticket extension" \
4196 -c "found session_ticket extension" \
4197 -c "parse new session ticket" \
4198 -S "session successfully restored from cache" \
4199 -s "session successfully restored from ticket" \
4200 -s "a session has been resumed" \
4201 -c "a session has been resumed"
4202
Valerio Setti04c85e12023-11-13 10:54:05 +0100[diff] [blame]4203requires_cipher_enabled "ARIA" "GCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4204requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4205run_test "Session resume using tickets: ARIA-192-GCM" \
4206 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-192-GCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4207 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4208 0 \
4209 -c "client hello, adding session ticket extension" \
4210 -s "found session ticket extension" \
4211 -s "server hello, adding session ticket extension" \
4212 -c "found session_ticket extension" \
4213 -c "parse new session ticket" \
4214 -S "session successfully restored from cache" \
4215 -s "session successfully restored from ticket" \
4216 -s "a session has been resumed" \
4217 -c "a session has been resumed"
4218
Valerio Setti04c85e12023-11-13 10:54:05 +0100[diff] [blame]4219requires_cipher_enabled "ARIA" "GCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4220requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4221run_test "Session resume using tickets: ARIA-256-GCM" \
4222 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-256-GCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4223 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4224 0 \
4225 -c "client hello, adding session ticket extension" \
4226 -s "found session ticket extension" \
4227 -s "server hello, adding session ticket extension" \
4228 -c "found session_ticket extension" \
4229 -c "parse new session ticket" \
4230 -S "session successfully restored from cache" \
4231 -s "session successfully restored from ticket" \
4232 -s "a session has been resumed" \
4233 -c "a session has been resumed"
4234
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4235requires_cipher_enabled "ARIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4236requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4237run_test "Session resume using tickets: ARIA-128-CCM" \
4238 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-128-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4239 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4240 0 \
4241 -c "client hello, adding session ticket extension" \
4242 -s "found session ticket extension" \
4243 -s "server hello, adding session ticket extension" \
4244 -c "found session_ticket extension" \
4245 -c "parse new session ticket" \
4246 -S "session successfully restored from cache" \
4247 -s "session successfully restored from ticket" \
4248 -s "a session has been resumed" \
4249 -c "a session has been resumed"
4250
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4251requires_cipher_enabled "ARIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4252requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4253run_test "Session resume using tickets: ARIA-192-CCM" \
4254 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-192-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4255 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4256 0 \
4257 -c "client hello, adding session ticket extension" \
4258 -s "found session ticket extension" \
4259 -s "server hello, adding session ticket extension" \
4260 -c "found session_ticket extension" \
4261 -c "parse new session ticket" \
4262 -S "session successfully restored from cache" \
4263 -s "session successfully restored from ticket" \
4264 -s "a session has been resumed" \
4265 -c "a session has been resumed"
4266
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4267requires_cipher_enabled "ARIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4268requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4269run_test "Session resume using tickets: ARIA-256-CCM" \
4270 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-256-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4271 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4272 0 \
4273 -c "client hello, adding session ticket extension" \
4274 -s "found session ticket extension" \
4275 -s "server hello, adding session ticket extension" \
4276 -c "found session_ticket extension" \
4277 -c "parse new session ticket" \
4278 -S "session successfully restored from cache" \
4279 -s "session successfully restored from ticket" \
4280 -s "a session has been resumed" \
4281 -c "a session has been resumed"
4282
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4283requires_cipher_enabled "CHACHA20"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4284requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei49c8eb32022-03-10 16:13:17 +0100[diff] [blame]4285run_test "Session resume using tickets: CHACHA20-POLY1305" \
4286 "$P_SRV debug_level=3 tickets=1 ticket_aead=CHACHA20-POLY1305" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4287 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei49c8eb32022-03-10 16:13:17 +0100[diff] [blame]4288 0 \
4289 -c "client hello, adding session ticket extension" \
4290 -s "found session ticket extension" \
4291 -s "server hello, adding session ticket extension" \
4292 -c "found session_ticket extension" \
4293 -c "parse new session ticket" \
4294 -S "session successfully restored from cache" \
4295 -s "session successfully restored from ticket" \
4296 -s "a session has been resumed" \
4297 -c "a session has been resumed"
4298
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4299# Tests for Session Tickets with DTLS
4300
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4301requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4302requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4303run_test "Session resume using tickets, DTLS: basic" \
4304 "$P_SRV debug_level=3 dtls=1 tickets=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4305 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4306 0 \
4307 -c "client hello, adding session ticket extension" \
4308 -s "found session ticket extension" \
4309 -s "server hello, adding session ticket extension" \
4310 -c "found session_ticket extension" \
4311 -c "parse new session ticket" \
4312 -S "session successfully restored from cache" \
4313 -s "session successfully restored from ticket" \
4314 -s "a session has been resumed" \
4315 -c "a session has been resumed"
4316
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4317requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4318requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4319run_test "Session resume using tickets, DTLS: cache disabled" \
4320 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4321 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4322 0 \
4323 -c "client hello, adding session ticket extension" \
4324 -s "found session ticket extension" \
4325 -s "server hello, adding session ticket extension" \
4326 -c "found session_ticket extension" \
4327 -c "parse new session ticket" \
4328 -S "session successfully restored from cache" \
4329 -s "session successfully restored from ticket" \
4330 -s "a session has been resumed" \
4331 -c "a session has been resumed"
4332
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4333requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4334requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4335run_test "Session resume using tickets, DTLS: timeout" \
4336 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0 ticket_timeout=1" \
Jerry Yua15af372022-12-05 15:55:24 +0800[diff] [blame]4337 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1 reco_delay=2000" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4338 0 \
4339 -c "client hello, adding session ticket extension" \
4340 -s "found session ticket extension" \
4341 -s "server hello, adding session ticket extension" \
4342 -c "found session_ticket extension" \
4343 -c "parse new session ticket" \
4344 -S "session successfully restored from cache" \
4345 -S "session successfully restored from ticket" \
4346 -S "a session has been resumed" \
4347 -C "a session has been resumed"
4348
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4349requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4350requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4351run_test "Session resume using tickets, DTLS: session copy" \
4352 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4353 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1 reco_mode=0" \
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4354 0 \
4355 -c "client hello, adding session ticket extension" \
4356 -s "found session ticket extension" \
4357 -s "server hello, adding session ticket extension" \
4358 -c "found session_ticket extension" \
4359 -c "parse new session ticket" \
4360 -S "session successfully restored from cache" \
4361 -s "session successfully restored from ticket" \
4362 -s "a session has been resumed" \
4363 -c "a session has been resumed"
4364
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4365requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4366requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4367run_test "Session resume using tickets, DTLS: openssl server" \
4368 "$O_SRV -dtls" \
4369 "$P_CLI dtls=1 debug_level=3 tickets=1 reconnect=1" \
4370 0 \
4371 -c "client hello, adding session ticket extension" \
4372 -c "found session_ticket extension" \
4373 -c "parse new session ticket" \
4374 -c "a session has been resumed"
4375
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4376# For reasons that aren't fully understood, this test randomly fails with high
Paul Elliott09cfa182021-10-13 16:13:44 +0100[diff] [blame]4377# probability with OpenSSL 1.0.2g on the CI, see #5012.
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4378requires_openssl_next
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4379requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4380requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4381run_test "Session resume using tickets, DTLS: openssl client" \
4382 "$P_SRV dtls=1 debug_level=3 tickets=1" \
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4383 "( $O_NEXT_CLI -dtls -sess_out $SESSION; \
4384 $O_NEXT_CLI -dtls -sess_in $SESSION; \
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4385 rm -f $SESSION )" \
4386 0 \
4387 -s "found session ticket extension" \
4388 -s "server hello, adding session ticket extension" \
4389 -S "session successfully restored from cache" \
4390 -s "session successfully restored from ticket" \
4391 -s "a session has been resumed"
4392
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4393# Tests for Session Resume based on session-ID and cache
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4394
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4395requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4396requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4397run_test "Session resume using cache: tickets enabled on client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4398 "$P_SRV debug_level=3 tickets=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4399 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]4400 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4401 -c "client hello, adding session ticket extension" \
4402 -s "found session ticket extension" \
4403 -S "server hello, adding session ticket extension" \
4404 -C "found session_ticket extension" \
4405 -C "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]4406 -s "session successfully restored from cache" \
4407 -S "session successfully restored from ticket" \
4408 -s "a session has been resumed" \
4409 -c "a session has been resumed"
4410
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4411requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4412requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4413run_test "Session resume using cache: tickets enabled on server" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4414 "$P_SRV debug_level=3 tickets=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4415 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]4416 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4417 -C "client hello, adding session ticket extension" \
4418 -S "found session ticket extension" \
4419 -S "server hello, adding session ticket extension" \
4420 -C "found session_ticket extension" \
4421 -C "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]4422 -s "session successfully restored from cache" \
4423 -S "session successfully restored from ticket" \
4424 -s "a session has been resumed" \
4425 -c "a session has been resumed"
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4426
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4427requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4428run_test "Session resume using cache: cache_max=0" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4429 "$P_SRV debug_level=3 tickets=0 cache_max=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4430 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]4431 0 \
4432 -S "session successfully restored from cache" \
4433 -S "session successfully restored from ticket" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4434 -S "a session has been resumed" \
4435 -C "a session has been resumed"
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]4436
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4437requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4438run_test "Session resume using cache: cache_max=1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4439 "$P_SRV debug_level=3 tickets=0 cache_max=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4440 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4441 0 \
4442 -s "session successfully restored from cache" \
4443 -S "session successfully restored from ticket" \
4444 -s "a session has been resumed" \
4445 -c "a session has been resumed"
4446
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4447requires_config_enabled MBEDTLS_SSL_CACHE_C
Pengyu Lv62ed1aa2023-03-07 14:52:47 +0800[diff] [blame]4448run_test "Session resume using cache: cache removed" \
4449 "$P_SRV debug_level=3 tickets=0 cache_remove=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4450 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1" \
Pengyu Lv62ed1aa2023-03-07 14:52:47 +0800[diff] [blame]4451 0 \
4452 -C "client hello, adding session ticket extension" \
4453 -S "found session ticket extension" \
4454 -S "server hello, adding session ticket extension" \
4455 -C "found session_ticket extension" \
4456 -C "parse new session ticket" \
4457 -S "session successfully restored from cache" \
4458 -S "session successfully restored from ticket" \
4459 -S "a session has been resumed" \
4460 -C "a session has been resumed"
4461
4462requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
4463requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard6df31962015-05-04 10:55:47 +0200[diff] [blame]4464run_test "Session resume using cache: timeout > delay" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4465 "$P_SRV debug_level=3 tickets=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4466 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1 reco_delay=0" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4467 0 \
4468 -s "session successfully restored from cache" \
4469 -S "session successfully restored from ticket" \
4470 -s "a session has been resumed" \
4471 -c "a session has been resumed"
4472
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4473requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4474run_test "Session resume using cache: timeout < delay" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4475 "$P_SRV debug_level=3 tickets=0 cache_timeout=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4476 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1 reco_delay=2000" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4477 0 \
4478 -S "session successfully restored from cache" \
4479 -S "session successfully restored from ticket" \
4480 -S "a session has been resumed" \
4481 -C "a session has been resumed"
4482
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4483requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4484run_test "Session resume using cache: no timeout" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4485 "$P_SRV debug_level=3 tickets=0 cache_timeout=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4486 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1 reco_delay=2000" \
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]4487 0 \
4488 -s "session successfully restored from cache" \
4489 -S "session successfully restored from ticket" \
4490 -s "a session has been resumed" \
4491 -c "a session has been resumed"
4492
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4493requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4494run_test "Session resume using cache: session copy" \
4495 "$P_SRV debug_level=3 tickets=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4496 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1 reco_mode=0" \
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4497 0 \
4498 -s "session successfully restored from cache" \
4499 -S "session successfully restored from ticket" \
4500 -s "a session has been resumed" \
4501 -c "a session has been resumed"
4502
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4503requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4504requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4505run_test "Session resume using cache: openssl client" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4506 "$P_SRV force_version=tls12 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]4507 "( $O_CLI -sess_out $SESSION; \
4508 $O_CLI -sess_in $SESSION; \
4509 rm -f $SESSION )" \
Manuel Pégourié-Gonnarddb735f62014-02-25 17:57:59 +0100[diff] [blame]4510 0 \
4511 -s "found session ticket extension" \
4512 -S "server hello, adding session ticket extension" \
4513 -s "session successfully restored from cache" \
4514 -S "session successfully restored from ticket" \
4515 -s "a session has been resumed"
4516
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4517requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4518requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4519run_test "Session resume using cache: openssl server" \
Ronald Croncbd7bfd2022-03-31 18:19:56 +0200[diff] [blame]4520 "$O_SRV -tls1_2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4521 "$P_CLI debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnarddb735f62014-02-25 17:57:59 +0100[diff] [blame]4522 0 \
4523 -C "found session_ticket extension" \
4524 -C "parse new session ticket" \
4525 -c "a session has been resumed"
4526
Andrzej Kurek7cf87252022-06-14 07:12:33 -0400[diff] [blame]4527# Tests for Session resume and extensions
4528
4529requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
4530requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
4531run_test "Session resume and connection ID" \
4532 "$P_SRV debug_level=3 cid=1 cid_val=dead dtls=1 tickets=0" \
4533 "$P_CLI debug_level=3 cid=1 cid_val=beef dtls=1 tickets=0 reconnect=1" \
4534 0 \
4535 -c "Enable use of CID extension." \
4536 -s "Enable use of CID extension." \
4537 -c "client hello, adding CID extension" \
4538 -s "found CID extension" \
4539 -s "Use of CID extension negotiated" \
4540 -s "server hello, adding CID extension" \
4541 -c "found CID extension" \
4542 -c "Use of CID extension negotiated" \
4543 -s "Copy CIDs into SSL transform" \
4544 -c "Copy CIDs into SSL transform" \
4545 -c "Peer CID (length 2 Bytes): de ad" \
4546 -s "Peer CID (length 2 Bytes): be ef" \
4547 -s "Use of Connection ID has been negotiated" \
4548 -c "Use of Connection ID has been negotiated"
4549
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4550# Tests for Session Resume based on session-ID and cache, DTLS
4551
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4552requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4553requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4554requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4555run_test "Session resume using cache, DTLS: tickets enabled on client" \
4556 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4557 "$P_CLI dtls=1 debug_level=3 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4558 0 \
4559 -c "client hello, adding session ticket extension" \
4560 -s "found session ticket extension" \
4561 -S "server hello, adding session ticket extension" \
4562 -C "found session_ticket extension" \
4563 -C "parse new session ticket" \
4564 -s "session successfully restored from cache" \
4565 -S "session successfully restored from ticket" \
4566 -s "a session has been resumed" \
4567 -c "a session has been resumed"
4568
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4569requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4570requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4571requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4572run_test "Session resume using cache, DTLS: tickets enabled on server" \
4573 "$P_SRV dtls=1 debug_level=3 tickets=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4574 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4575 0 \
4576 -C "client hello, adding session ticket extension" \
4577 -S "found session ticket extension" \
4578 -S "server hello, adding session ticket extension" \
4579 -C "found session_ticket extension" \
4580 -C "parse new session ticket" \
4581 -s "session successfully restored from cache" \
4582 -S "session successfully restored from ticket" \
4583 -s "a session has been resumed" \
4584 -c "a session has been resumed"
4585
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4586requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4587requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4588run_test "Session resume using cache, DTLS: cache_max=0" \
4589 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_max=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4590 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4591 0 \
4592 -S "session successfully restored from cache" \
4593 -S "session successfully restored from ticket" \
4594 -S "a session has been resumed" \
4595 -C "a session has been resumed"
4596
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4597requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4598requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4599run_test "Session resume using cache, DTLS: cache_max=1" \
4600 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_max=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4601 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4602 0 \
4603 -s "session successfully restored from cache" \
4604 -S "session successfully restored from ticket" \
4605 -s "a session has been resumed" \
4606 -c "a session has been resumed"
4607
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4608requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4609requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4610run_test "Session resume using cache, DTLS: timeout > delay" \
4611 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4612 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=0" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4613 0 \
4614 -s "session successfully restored from cache" \
4615 -S "session successfully restored from ticket" \
4616 -s "a session has been resumed" \
4617 -c "a session has been resumed"
4618
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4619requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4620requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4621run_test "Session resume using cache, DTLS: timeout < delay" \
4622 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_timeout=1" \
Jerry Yua15af372022-12-05 15:55:24 +0800[diff] [blame]4623 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=2000" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4624 0 \
4625 -S "session successfully restored from cache" \
4626 -S "session successfully restored from ticket" \
4627 -S "a session has been resumed" \
4628 -C "a session has been resumed"
4629
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4630requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4631requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4632run_test "Session resume using cache, DTLS: no timeout" \
4633 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_timeout=0" \
Jerry Yua15af372022-12-05 15:55:24 +0800[diff] [blame]4634 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=2000" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4635 0 \
4636 -s "session successfully restored from cache" \
4637 -S "session successfully restored from ticket" \
4638 -s "a session has been resumed" \
4639 -c "a session has been resumed"
4640
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4641requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4642requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4643run_test "Session resume using cache, DTLS: session copy" \
4644 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4645 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_mode=0" \
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4646 0 \
4647 -s "session successfully restored from cache" \
4648 -S "session successfully restored from ticket" \
4649 -s "a session has been resumed" \
4650 -c "a session has been resumed"
4651
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4652# For reasons that aren't fully understood, this test randomly fails with high
Paul Elliott09cfa182021-10-13 16:13:44 +0100[diff] [blame]4653# probability with OpenSSL 1.0.2g on the CI, see #5012.
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4654requires_openssl_next
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4655requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4656requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4657requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4658run_test "Session resume using cache, DTLS: openssl client" \
4659 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4660 "( $O_NEXT_CLI -dtls -sess_out $SESSION; \
4661 $O_NEXT_CLI -dtls -sess_in $SESSION; \
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4662 rm -f $SESSION )" \
4663 0 \
4664 -s "found session ticket extension" \
4665 -S "server hello, adding session ticket extension" \
4666 -s "session successfully restored from cache" \
4667 -S "session successfully restored from ticket" \
4668 -s "a session has been resumed"
4669
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4670requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4671requires_config_enabled MBEDTLS_SSL_CACHE_C
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4672run_test "Session resume using cache, DTLS: openssl server" \
4673 "$O_SRV -dtls" \
4674 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1" \
4675 0 \
4676 -C "found session_ticket extension" \
4677 -C "parse new session ticket" \
4678 -c "a session has been resumed"
4679
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4680# Tests for Max Fragment Length extension
4681
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4682requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4683requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4684run_test "Max fragment length: enabled, default" \
Waleed Elmelegy3d46b7f2024-01-01 20:50:53 +0000[diff] [blame]4685 "$P_SRV debug_level=3 force_version=tls12" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4686 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4687 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4688 -c "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4689 -c "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
4690 -s "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4691 -s "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4692 -C "client hello, adding max_fragment_length extension" \
4693 -S "found max fragment length extension" \
4694 -S "server hello, max_fragment_length extension" \
4695 -C "found max_fragment_length extension"
4696
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4697requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4698requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4699run_test "Max fragment length: enabled, default, larger message" \
Waleed Elmelegy3d46b7f2024-01-01 20:50:53 +0000[diff] [blame]4700 "$P_SRV debug_level=3 force_version=tls12" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4701 "$P_CLI debug_level=3 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4702 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4703 -c "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4704 -c "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
4705 -s "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4706 -s "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4707 -C "client hello, adding max_fragment_length extension" \
4708 -S "found max fragment length extension" \
4709 -S "server hello, max_fragment_length extension" \
4710 -C "found max_fragment_length extension" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4711 -c "$(( $MAX_CONTENT_LEN + 1)) bytes written in 2 fragments" \
4712 -s "$MAX_CONTENT_LEN bytes read" \
Hanno Becker9cfabe32017-10-18 14:42:01 +0100[diff] [blame]4713 -s "1 bytes read"
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4714
4715requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4716requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4717run_test "Max fragment length, DTLS: enabled, default, larger message" \
4718 "$P_SRV debug_level=3 dtls=1" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4719 "$P_CLI debug_level=3 dtls=1 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4720 1 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4721 -c "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4722 -c "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
4723 -s "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4724 -s "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4725 -C "client hello, adding max_fragment_length extension" \
4726 -S "found max fragment length extension" \
4727 -S "server hello, max_fragment_length extension" \
4728 -C "found max_fragment_length extension" \
4729 -c "fragment larger than.*maximum "
4730
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4731# Run some tests with MBEDTLS_SSL_MAX_FRAGMENT_LENGTH disabled
4732# (session fragment length will be 16384 regardless of mbedtls
4733# content length configuration.)
4734
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4735requires_config_disabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4736requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4737run_test "Max fragment length: disabled, larger message" \
Waleed Elmelegy3d46b7f2024-01-01 20:50:53 +0000[diff] [blame]4738 "$P_SRV debug_level=3 force_version=tls12" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4739 "$P_CLI debug_level=3 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4740 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4741 -C "Maximum incoming record payload length is 16384" \
4742 -C "Maximum outgoing record payload length is 16384" \
4743 -S "Maximum incoming record payload length is 16384" \
4744 -S "Maximum outgoing record payload length is 16384" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4745 -c "$(( $MAX_CONTENT_LEN + 1)) bytes written in 2 fragments" \
4746 -s "$MAX_CONTENT_LEN bytes read" \
Hanno Becker9cfabe32017-10-18 14:42:01 +0100[diff] [blame]4747 -s "1 bytes read"
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4748
4749requires_config_disabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4750requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Yuto Takano0509fea2021-06-21 19:43:33 +0100[diff] [blame]4751run_test "Max fragment length, DTLS: disabled, larger message" \
Waleed Elmelegy3d46b7f2024-01-01 20:50:53 +0000[diff] [blame]4752 "$P_SRV debug_level=3 dtls=1 force_version=tls12" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4753 "$P_CLI debug_level=3 dtls=1 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4754 1 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4755 -C "Maximum incoming record payload length is 16384" \
4756 -C "Maximum outgoing record payload length is 16384" \
4757 -S "Maximum incoming record payload length is 16384" \
4758 -S "Maximum outgoing record payload length is 16384" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4759 -c "fragment larger than.*maximum "
4760
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4761requires_max_content_len 4096
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4762requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4763run_test "Max fragment length: used by client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4764 "$P_SRV debug_level=3" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4765 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=4096" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4766 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4767 -c "Maximum incoming record payload length is 4096" \
4768 -c "Maximum outgoing record payload length is 4096" \
4769 -s "Maximum incoming record payload length is 4096" \
4770 -s "Maximum outgoing record payload length is 4096" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4771 -c "client hello, adding max_fragment_length extension" \
4772 -s "found max fragment length extension" \
4773 -s "server hello, max_fragment_length extension" \
4774 -c "found max_fragment_length extension"
4775
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4776requires_max_content_len 1024
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4777requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4778run_test "Max fragment length: client 512, server 1024" \
4779 "$P_SRV debug_level=3 max_frag_len=1024" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4780 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4781 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4782 -c "Maximum incoming record payload length is 512" \
4783 -c "Maximum outgoing record payload length is 512" \
4784 -s "Maximum incoming record payload length is 512" \
4785 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4786 -c "client hello, adding max_fragment_length extension" \
4787 -s "found max fragment length extension" \
4788 -s "server hello, max_fragment_length extension" \
4789 -c "found max_fragment_length extension"
4790
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4791requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4792requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4793run_test "Max fragment length: client 512, server 2048" \
4794 "$P_SRV debug_level=3 max_frag_len=2048" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4795 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4796 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4797 -c "Maximum incoming record payload length is 512" \
4798 -c "Maximum outgoing record payload length is 512" \
4799 -s "Maximum incoming record payload length is 512" \
4800 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4801 -c "client hello, adding max_fragment_length extension" \
4802 -s "found max fragment length extension" \
4803 -s "server hello, max_fragment_length extension" \
4804 -c "found max_fragment_length extension"
4805
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4806requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4807requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4808run_test "Max fragment length: client 512, server 4096" \
4809 "$P_SRV debug_level=3 max_frag_len=4096" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4810 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4811 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4812 -c "Maximum incoming record payload length is 512" \
4813 -c "Maximum outgoing record payload length is 512" \
4814 -s "Maximum incoming record payload length is 512" \
4815 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4816 -c "client hello, adding max_fragment_length extension" \
4817 -s "found max fragment length extension" \
4818 -s "server hello, max_fragment_length extension" \
4819 -c "found max_fragment_length extension"
4820
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4821requires_max_content_len 1024
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4822requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4823run_test "Max fragment length: client 1024, server 512" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4824 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4825 "$P_CLI debug_level=3 max_frag_len=1024" \
4826 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4827 -c "Maximum incoming record payload length is 1024" \
4828 -c "Maximum outgoing record payload length is 1024" \
4829 -s "Maximum incoming record payload length is 1024" \
4830 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4831 -c "client hello, adding max_fragment_length extension" \
4832 -s "found max fragment length extension" \
4833 -s "server hello, max_fragment_length extension" \
4834 -c "found max_fragment_length extension"
4835
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4836requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4837requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4838run_test "Max fragment length: client 1024, server 2048" \
4839 "$P_SRV debug_level=3 max_frag_len=2048" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4840 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4841 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4842 -c "Maximum incoming record payload length is 1024" \
4843 -c "Maximum outgoing record payload length is 1024" \
4844 -s "Maximum incoming record payload length is 1024" \
4845 -s "Maximum outgoing record payload length is 1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4846 -c "client hello, adding max_fragment_length extension" \
4847 -s "found max fragment length extension" \
4848 -s "server hello, max_fragment_length extension" \
4849 -c "found max_fragment_length extension"
4850
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4851requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4852requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4853run_test "Max fragment length: client 1024, server 4096" \
4854 "$P_SRV debug_level=3 max_frag_len=4096" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4855 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4856 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4857 -c "Maximum incoming record payload length is 1024" \
4858 -c "Maximum outgoing record payload length is 1024" \
4859 -s "Maximum incoming record payload length is 1024" \
4860 -s "Maximum outgoing record payload length is 1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4861 -c "client hello, adding max_fragment_length extension" \
4862 -s "found max fragment length extension" \
4863 -s "server hello, max_fragment_length extension" \
4864 -c "found max_fragment_length extension"
4865
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4866requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4867requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4868run_test "Max fragment length: client 2048, server 512" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4869 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4870 "$P_CLI debug_level=3 max_frag_len=2048" \
4871 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4872 -c "Maximum incoming record payload length is 2048" \
4873 -c "Maximum outgoing record payload length is 2048" \
4874 -s "Maximum incoming record payload length is 2048" \
4875 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4876 -c "client hello, adding max_fragment_length extension" \
4877 -s "found max fragment length extension" \
4878 -s "server hello, max_fragment_length extension" \
4879 -c "found max_fragment_length extension"
4880
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4881requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4882requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4883run_test "Max fragment length: client 2048, server 1024" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4884 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4885 "$P_CLI debug_level=3 max_frag_len=2048" \
4886 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4887 -c "Maximum incoming record payload length is 2048" \
4888 -c "Maximum outgoing record payload length is 2048" \
4889 -s "Maximum incoming record payload length is 2048" \
4890 -s "Maximum outgoing record payload length is 1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4891 -c "client hello, adding max_fragment_length extension" \
4892 -s "found max fragment length extension" \
4893 -s "server hello, max_fragment_length extension" \
4894 -c "found max_fragment_length extension"
4895
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4896requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4897requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4898run_test "Max fragment length: client 2048, server 4096" \
4899 "$P_SRV debug_level=3 max_frag_len=4096" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4900 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=2048" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4901 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4902 -c "Maximum incoming record payload length is 2048" \
4903 -c "Maximum outgoing record payload length is 2048" \
4904 -s "Maximum incoming record payload length is 2048" \
4905 -s "Maximum outgoing record payload length is 2048" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4906 -c "client hello, adding max_fragment_length extension" \
4907 -s "found max fragment length extension" \
4908 -s "server hello, max_fragment_length extension" \
4909 -c "found max_fragment_length extension"
4910
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4911requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4912requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4913run_test "Max fragment length: client 4096, server 512" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4914 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4915 "$P_CLI debug_level=3 max_frag_len=4096" \
4916 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4917 -c "Maximum incoming record payload length is 4096" \
4918 -c "Maximum outgoing record payload length is 4096" \
4919 -s "Maximum incoming record payload length is 4096" \
4920 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4921 -c "client hello, adding max_fragment_length extension" \
4922 -s "found max fragment length extension" \
4923 -s "server hello, max_fragment_length extension" \
4924 -c "found max_fragment_length extension"
4925
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4926requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4927requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4928run_test "Max fragment length: client 4096, server 1024" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4929 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4930 "$P_CLI debug_level=3 max_frag_len=4096" \
4931 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4932 -c "Maximum incoming record payload length is 4096" \
4933 -c "Maximum outgoing record payload length is 4096" \
4934 -s "Maximum incoming record payload length is 4096" \
4935 -s "Maximum outgoing record payload length is 1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4936 -c "client hello, adding max_fragment_length extension" \
4937 -s "found max fragment length extension" \
4938 -s "server hello, max_fragment_length extension" \
4939 -c "found max_fragment_length extension"
4940
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4941requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4942requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4943run_test "Max fragment length: client 4096, server 2048" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4944 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=2048" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4945 "$P_CLI debug_level=3 max_frag_len=4096" \
4946 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4947 -c "Maximum incoming record payload length is 4096" \
4948 -c "Maximum outgoing record payload length is 4096" \
4949 -s "Maximum incoming record payload length is 4096" \
4950 -s "Maximum outgoing record payload length is 2048" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4951 -c "client hello, adding max_fragment_length extension" \
4952 -s "found max fragment length extension" \
4953 -s "server hello, max_fragment_length extension" \
4954 -c "found max_fragment_length extension"
4955
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4956requires_max_content_len 4096
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4957requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4958run_test "Max fragment length: used by server" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4959 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=4096" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4960 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4961 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4962 -c "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4963 -c "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
4964 -s "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4965 -s "Maximum outgoing record payload length is 4096" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4966 -C "client hello, adding max_fragment_length extension" \
4967 -S "found max fragment length extension" \
4968 -S "server hello, max_fragment_length extension" \
4969 -C "found max_fragment_length extension"
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4970
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4971requires_max_content_len 4096
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4972requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4973requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4974requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4975run_test "Max fragment length: gnutls server" \
Ronald Croncbd7bfd2022-03-31 18:19:56 +0200[diff] [blame]4976 "$G_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4977 "$P_CLI debug_level=3 max_frag_len=4096" \
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]4978 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4979 -c "Maximum incoming record payload length is 4096" \
4980 -c "Maximum outgoing record payload length is 4096" \
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]4981 -c "client hello, adding max_fragment_length extension" \
4982 -c "found max_fragment_length extension"
4983
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4984requires_max_content_len 2048
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4985requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4986run_test "Max fragment length: client, message just fits" \
4987 "$P_SRV debug_level=3" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4988 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=2048 request_size=2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4989 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4990 -c "Maximum incoming record payload length is 2048" \
4991 -c "Maximum outgoing record payload length is 2048" \
4992 -s "Maximum incoming record payload length is 2048" \
4993 -s "Maximum outgoing record payload length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4994 -c "client hello, adding max_fragment_length extension" \
4995 -s "found max fragment length extension" \
4996 -s "server hello, max_fragment_length extension" \
4997 -c "found max_fragment_length extension" \
4998 -c "2048 bytes written in 1 fragments" \
4999 -s "2048 bytes read"
5000
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]5001requires_max_content_len 2048
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]5002requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]5003run_test "Max fragment length: client, larger message" \
5004 "$P_SRV debug_level=3" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]5005 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=2048 request_size=2345" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]5006 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]5007 -c "Maximum incoming record payload length is 2048" \
5008 -c "Maximum outgoing record payload length is 2048" \
5009 -s "Maximum incoming record payload length is 2048" \
5010 -s "Maximum outgoing record payload length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]5011 -c "client hello, adding max_fragment_length extension" \
5012 -s "found max fragment length extension" \
5013 -s "server hello, max_fragment_length extension" \
5014 -c "found max_fragment_length extension" \
5015 -c "2345 bytes written in 2 fragments" \
5016 -s "2048 bytes read" \
5017 -s "297 bytes read"
5018
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]5019requires_max_content_len 2048
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]5020requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5021requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard23eb74d2015-01-21 14:37:13 +0000[diff] [blame]5022run_test "Max fragment length: DTLS client, larger message" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]5023 "$P_SRV debug_level=3 dtls=1" \
5024 "$P_CLI debug_level=3 dtls=1 max_frag_len=2048 request_size=2345" \
5025 1 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]5026 -c "Maximum incoming record payload length is 2048" \
5027 -c "Maximum outgoing record payload length is 2048" \
5028 -s "Maximum incoming record payload length is 2048" \
5029 -s "Maximum outgoing record payload length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]5030 -c "client hello, adding max_fragment_length extension" \
5031 -s "found max fragment length extension" \
5032 -s "server hello, max_fragment_length extension" \
5033 -c "found max_fragment_length extension" \
5034 -c "fragment larger than.*maximum"
5035
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]5036# Tests for Record Size Limit extension
5037
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]5038requires_gnutls_tls1_3
5039requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5040requires_config_enabled MBEDTLS_SSL_SRV_C
5041requires_config_enabled MBEDTLS_DEBUG_C
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]5042requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5043requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5044run_test "Record Size Limit: TLS 1.3: Server-side parsing and debug output" \
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]5045 "$P_SRV debug_level=3 force_version=tls13" \
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]5046 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4" \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5047 0 \
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]5048 -s "RecordSizeLimit: 16385 Bytes" \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5049 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5050 -s "Maximum outgoing record payload length is 16383" \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5051 -s "bytes written in 1 fragments"
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]5052
5053requires_gnutls_tls1_3
5054requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5055requires_config_enabled MBEDTLS_SSL_CLI_C
5056requires_config_enabled MBEDTLS_DEBUG_C
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]5057requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5058requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5059run_test "Record Size Limit: TLS 1.3: Client-side parsing and debug output" \
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5060 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL --disable-client-cert -d 4" \
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]5061 "$P_CLI debug_level=4 force_version=tls13" \
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]5062 0 \
Yanray Wang42017cd2023-11-08 11:15:23 +0800[diff] [blame]5063 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5064 -c "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5065 -c "EncryptedExtensions: record_size_limit(28) extension received." \
Yanray Wang42017cd2023-11-08 11:15:23 +0800[diff] [blame]5066 -c "RecordSizeLimit: 16385 Bytes" \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5067
Waleed Elmelegyf5017902024-01-09 14:18:34 +0000[diff] [blame]5068# In the following tests, --recordsize is the value used by the G_NEXT_CLI (3.7.2) to configure the
5069# maximum record size using gnutls_record_set_max_size()
5070# (https://gnutls.org/reference/gnutls-gnutls.html#gnutls-record-set-max-size).
5071# There is currently a lower limit of 512, caused by gnutls_record_set_max_size()
5072# not respecting the "%ALLOW_SMALL_RECORDS" priority string and not using the
5073# more recent function gnutls_record_set_max_recv_size()
5074# (https://gnutls.org/reference/gnutls-gnutls.html#gnutls-record-set-max-recv-size).
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5075# There is currently an upper limit of 4096, caused by the cli arg parser:
5076# https://gitlab.com/gnutls/gnutls/-/blob/3.7.2/src/cli-args.def#L395.
Waleed Elmelegyf5017902024-01-09 14:18:34 +0000[diff] [blame]5077# Thus, these tests are currently limited to the value range 512-4096.
5078# Also, the value sent in the extension will be one larger than the value
5079# set at the command line:
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5080# https://gitlab.com/gnutls/gnutls/-/blob/3.7.2/lib/ext/record_size_limit.c#L142
Waleed Elmelegy9aec1c72023-12-05 20:08:51 +0000[diff] [blame]5081
5082# Currently test certificates being used do not fit in 513 record size limit
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5083# so for 513 record size limit tests we use preshared key to avoid sending
5084# the certificate.
Waleed Elmelegy9aec1c72023-12-05 20:08:51 +0000[diff] [blame]5085
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5086requires_gnutls_tls1_3
5087requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5088requires_config_enabled MBEDTLS_SSL_SRV_C
5089requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5090requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5091requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
5092run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (513), 1 fragment" \
5093 "$P_SRV debug_level=3 force_version=tls13 tls13_kex_modes=psk \
5094 psk_list=Client_identity,6162636465666768696a6b6c6d6e6f70 \
5095 response_size=256" \
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5096 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+PSK --recordsize 512 \
5097 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70" \
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5098 0 \
5099 -s "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5100 -s "ClientHello: record_size_limit(28) extension exists." \
5101 -s "Sent RecordSizeLimit: 16384 Bytes" \
5102 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5103 -s "Maximum outgoing record payload length is 511" \
5104 -s "256 bytes written in 1 fragments"
Waleed Elmelegy9aec1c72023-12-05 20:08:51 +0000[diff] [blame]5105
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5106requires_gnutls_tls1_3
5107requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5108requires_config_enabled MBEDTLS_SSL_SRV_C
5109requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5110requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5111requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
5112run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (513), 2 fragments" \
5113 "$P_SRV debug_level=3 force_version=tls13 tls13_kex_modes=psk \
5114 psk_list=Client_identity,6162636465666768696a6b6c6d6e6f70 \
5115 response_size=768" \
5116 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+PSK --recordsize 512 \
5117 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70" \
5118 0 \
5119 -s "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5120 -s "ClientHello: record_size_limit(28) extension exists." \
5121 -s "Sent RecordSizeLimit: 16384 Bytes" \
5122 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5123 -s "Maximum outgoing record payload length is 511" \
5124 -s "768 bytes written in 2 fragments"
Waleed Elmelegy9aec1c72023-12-05 20:08:51 +0000[diff] [blame]5125
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5126requires_gnutls_tls1_3
5127requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5128requires_config_enabled MBEDTLS_SSL_SRV_C
5129requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5130requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5131requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
5132run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (513), 3 fragments" \
5133 "$P_SRV debug_level=3 force_version=tls13 tls13_kex_modes=psk \
5134 psk_list=Client_identity,6162636465666768696a6b6c6d6e6f70 \
5135 response_size=1280" \
5136 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+PSK --recordsize 512 \
5137 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70" \
5138 0 \
5139 -s "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5140 -s "ClientHello: record_size_limit(28) extension exists." \
5141 -s "Sent RecordSizeLimit: 16384 Bytes" \
5142 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5143 -s "Maximum outgoing record payload length is 511" \
5144 -s "1280 bytes written in 3 fragments"
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5145
5146requires_gnutls_tls1_3
5147requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5148requires_config_enabled MBEDTLS_SSL_SRV_C
5149requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5150requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5151requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5152run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (1024), 1 fragment" \
5153 "$P_SRV debug_level=3 force_version=tls13 response_size=512" \
5154 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 1023" \
5155 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5156 -s "RecordSizeLimit: 1024 Bytes" \
5157 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy47d29462024-01-03 17:31:52 +0000[diff] [blame]5158 -s "Sent RecordSizeLimit: 16384 Bytes" \
5159 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5160 -s "Maximum outgoing record payload length is 1023" \
5161 -s "512 bytes written in 1 fragments"
5162
5163requires_gnutls_tls1_3
5164requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5165requires_config_enabled MBEDTLS_SSL_SRV_C
5166requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5167requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5168requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5169run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (1024), 2 fragments" \
5170 "$P_SRV debug_level=3 force_version=tls13 response_size=1536" \
5171 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 1023" \
5172 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5173 -s "RecordSizeLimit: 1024 Bytes" \
5174 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy47d29462024-01-03 17:31:52 +0000[diff] [blame]5175 -s "Sent RecordSizeLimit: 16384 Bytes" \
5176 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5177 -s "Maximum outgoing record payload length is 1023" \
5178 -s "1536 bytes written in 2 fragments"
5179
5180requires_gnutls_tls1_3
5181requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5182requires_config_enabled MBEDTLS_SSL_SRV_C
5183requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5184requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5185requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5186run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (1024), 3 fragments" \
5187 "$P_SRV debug_level=3 force_version=tls13 response_size=2560" \
5188 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 1023" \
5189 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5190 -s "RecordSizeLimit: 1024 Bytes" \
5191 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy47d29462024-01-03 17:31:52 +0000[diff] [blame]5192 -s "Sent RecordSizeLimit: 16384 Bytes" \
5193 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5194 -s "Maximum outgoing record payload length is 1023" \
5195 -s "2560 bytes written in 3 fragments"
5196
5197requires_gnutls_tls1_3
5198requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5199requires_config_enabled MBEDTLS_SSL_SRV_C
5200requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5201requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5202requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5203run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (4096), 1 fragment" \
5204 "$P_SRV debug_level=3 force_version=tls13 response_size=2048" \
5205 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 4095" \
5206 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5207 -s "RecordSizeLimit: 4096 Bytes" \
5208 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy47d29462024-01-03 17:31:52 +0000[diff] [blame]5209 -s "Sent RecordSizeLimit: 16384 Bytes" \
5210 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5211 -s "Maximum outgoing record payload length is 4095" \
5212 -s "2048 bytes written in 1 fragments"
5213
5214requires_gnutls_tls1_3
5215requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5216requires_config_enabled MBEDTLS_SSL_SRV_C
5217requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5218requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5219requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5220run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (4096), 2 fragments" \
5221 "$P_SRV debug_level=3 force_version=tls13 response_size=6144" \
5222 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 4095" \
5223 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5224 -s "RecordSizeLimit: 4096 Bytes" \
5225 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy47d29462024-01-03 17:31:52 +0000[diff] [blame]5226 -s "Sent RecordSizeLimit: 16384 Bytes" \
5227 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5228 -s "Maximum outgoing record payload length is 4095" \
5229 -s "6144 bytes written in 2 fragments"
5230
5231requires_gnutls_tls1_3
5232requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5233requires_config_enabled MBEDTLS_SSL_SRV_C
5234requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5235requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5236requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5237run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (4096), 3 fragments" \
5238 "$P_SRV debug_level=3 force_version=tls13 response_size=10240" \
5239 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 4095" \
5240 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5241 -s "RecordSizeLimit: 4096 Bytes" \
5242 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5243 -s "Sent RecordSizeLimit: 16384 Bytes" \
5244 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5245 -s "Maximum outgoing record payload length is 4095" \
5246 -s "10240 bytes written in 3 fragments"
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]5247
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5248requires_gnutls_tls1_3
5249requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5250requires_config_enabled MBEDTLS_SSL_CLI_C
5251requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5252requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5253requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5254run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (513), 1 fragment" \
5255 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --disable-client-cert --recordsize 512" \
5256 "$P_CLI debug_level=4 force_version=tls13 request_size=256" \
5257 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5258 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5259 -c "ClientHello: record_size_limit(28) extension exists." \
5260 -c "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5261 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5262 -c "Maximum outgoing record payload length is 511" \
5263 -c "256 bytes written in 1 fragments"
5264
5265requires_gnutls_tls1_3
5266requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5267requires_config_enabled MBEDTLS_SSL_CLI_C
5268requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5269requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5270requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5271run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (513), 2 fragments" \
5272 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --disable-client-cert --recordsize 512" \
5273 "$P_CLI debug_level=4 force_version=tls13 request_size=768" \
5274 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5275 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5276 -c "ClientHello: record_size_limit(28) extension exists." \
5277 -c "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5278 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5279 -c "Maximum outgoing record payload length is 511" \
5280 -c "768 bytes written in 2 fragments"
5281
5282requires_gnutls_tls1_3
5283requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5284requires_config_enabled MBEDTLS_SSL_CLI_C
5285requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5286requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5287requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5288run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (513), 3 fragments" \
5289 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --disable-client-cert --recordsize 512" \
5290 "$P_CLI debug_level=4 force_version=tls13 request_size=1280" \
5291 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5292 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5293 -c "ClientHello: record_size_limit(28) extension exists." \
5294 -c "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5295 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5296 -c "Maximum outgoing record payload length is 511" \
5297 -c "1280 bytes written in 3 fragments"
5298
5299requires_gnutls_tls1_3
5300requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5301requires_config_enabled MBEDTLS_SSL_CLI_C
5302requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5303requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5304requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5305run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (1024), 1 fragment" \
5306 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 1023" \
5307 "$P_CLI debug_level=4 force_version=tls13 request_size=512" \
5308 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5309 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5310 -c "ClientHello: record_size_limit(28) extension exists." \
5311 -c "RecordSizeLimit: 1024 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5312 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5313 -c "Maximum outgoing record payload length is 1023" \
5314 -c "512 bytes written in 1 fragments"
5315
5316requires_gnutls_tls1_3
5317requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5318requires_config_enabled MBEDTLS_SSL_CLI_C
5319requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5320requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5321requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5322run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (1024), 2 fragments" \
5323 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 1023" \
5324 "$P_CLI debug_level=4 force_version=tls13 request_size=1536" \
5325 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5326 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5327 -c "ClientHello: record_size_limit(28) extension exists." \
5328 -c "RecordSizeLimit: 1024 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5329 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5330 -c "Maximum outgoing record payload length is 1023" \
5331 -c "1536 bytes written in 2 fragments"
5332
5333requires_gnutls_tls1_3
5334requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5335requires_config_enabled MBEDTLS_SSL_CLI_C
5336requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5337requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5338requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5339run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (1024), 3 fragments" \
5340 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 1023" \
5341 "$P_CLI debug_level=4 force_version=tls13 request_size=2560" \
5342 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5343 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5344 -c "ClientHello: record_size_limit(28) extension exists." \
5345 -c "RecordSizeLimit: 1024 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5346 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5347 -c "Maximum outgoing record payload length is 1023" \
5348 -c "2560 bytes written in 3 fragments"
5349
5350requires_gnutls_tls1_3
5351requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5352requires_config_enabled MBEDTLS_SSL_CLI_C
5353requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5354requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5355requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5356run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (4096), 1 fragment" \
5357 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 4095" \
5358 "$P_CLI debug_level=4 force_version=tls13 request_size=2048" \
5359 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5360 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5361 -c "ClientHello: record_size_limit(28) extension exists." \
5362 -c "RecordSizeLimit: 4096 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5363 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5364 -c "Maximum outgoing record payload length is 4095" \
5365 -c "2048 bytes written in 1 fragments"
5366
5367requires_gnutls_tls1_3
5368requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5369requires_config_enabled MBEDTLS_SSL_CLI_C
5370requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5371requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5372requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5373run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (4096), 2 fragments" \
5374 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 4095" \
5375 "$P_CLI debug_level=4 force_version=tls13 request_size=6144" \
5376 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5377 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5378 -c "ClientHello: record_size_limit(28) extension exists." \
5379 -c "RecordSizeLimit: 4096 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5380 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5381 -c "Maximum outgoing record payload length is 4095" \
5382 -c "6144 bytes written in 2 fragments"
5383
5384requires_gnutls_tls1_3
5385requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5386requires_config_enabled MBEDTLS_SSL_CLI_C
5387requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5388requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5389requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5390run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (4096), 3 fragments" \
5391 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 4095" \
5392 "$P_CLI debug_level=4 force_version=tls13 request_size=10240" \
5393 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5394 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5395 -c "ClientHello: record_size_limit(28) extension exists." \
5396 -c "RecordSizeLimit: 4096 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5397 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5398 -c "Maximum outgoing record payload length is 4095" \
5399 -c "10240 bytes written in 3 fragments"
5400
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5401# TODO: For time being, we send fixed value of RecordSizeLimit defined by
5402# MBEDTLS_SSL_IN_CONTENT_LEN. Once we support variable buffer length of
5403# RecordSizeLimit, we need to modify value of RecordSizeLimit in below test.
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5404requires_config_value_equals "MBEDTLS_SSL_IN_CONTENT_LEN" 16384
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5405requires_config_enabled MBEDTLS_SSL_CLI_C
5406requires_config_enabled MBEDTLS_SSL_SRV_C
5407requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5408requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5409requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5410run_test "Record Size Limit: TLS 1.3 m->m: both peer comply with record size limit (default)" \
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5411 "$P_SRV debug_level=4 force_version=tls13" \
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5412 "$P_CLI debug_level=4" \
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5413 0 \
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5414 -c "Sent RecordSizeLimit: $MAX_IN_LEN Bytes" \
5415 -c "RecordSizeLimit: $MAX_IN_LEN Bytes" \
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5416 -s "RecordSizeLimit: $MAX_IN_LEN Bytes" \
5417 -s "Sent RecordSizeLimit: $MAX_IN_LEN Bytes" \
5418 -s "Maximum outgoing record payload length is 16383" \
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5419 -s "Maximum incoming record payload length is 16384"
5420
Waleed Elmelegyf5017902024-01-09 14:18:34 +0000[diff] [blame]5421# End of Record size limit tests
5422
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5423# Tests for renegotiation
5424
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5425# G_NEXT_SRV is used in renegotiation tests becuase of the increased
5426# extensions limit since we exceed the limit in G_SRV when we send
5427# TLS 1.3 extensions in the initial handshake.
5428
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5429# Renegotiation SCSV always added, regardless of SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5430run_test "Renegotiation: none, for reference" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5431 "$P_SRV debug_level=3 exchanges=2 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5432 "$P_CLI force_version=tls12 debug_level=3 exchanges=2" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5433 0 \
5434 -C "client hello, adding renegotiation extension" \
5435 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5436 -S "found renegotiation extension" \
5437 -s "server hello, secure renegotiation extension" \
5438 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5439 -C "=> renegotiate" \
5440 -S "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5441 -S "write hello request"
5442
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5443requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5444run_test "Renegotiation: client-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5445 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5446 "$P_CLI force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5447 0 \
5448 -c "client hello, adding renegotiation extension" \
5449 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5450 -s "found renegotiation extension" \
5451 -s "server hello, secure renegotiation extension" \
5452 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5453 -c "=> renegotiate" \
5454 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5455 -S "write hello request"
5456
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5457requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5458run_test "Renegotiation: server-initiated" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5459 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5460 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5461 0 \
5462 -c "client hello, adding renegotiation extension" \
5463 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5464 -s "found renegotiation extension" \
5465 -s "server hello, secure renegotiation extension" \
5466 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5467 -c "=> renegotiate" \
5468 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5469 -s "write hello request"
5470
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]5471# Checks that no Signature Algorithm with SHA-1 gets negotiated. Negotiating SHA-1 would mean that
5472# the server did not parse the Signature Algorithm extension. This test is valid only if an MD
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]5473# algorithm stronger than SHA-1 is enabled in mbedtls_config.h
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5474requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]5475run_test "Renegotiation: Signature Algorithms parsing, client-initiated" \
5476 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5477 "$P_CLI force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]5478 0 \
5479 -c "client hello, adding renegotiation extension" \
5480 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5481 -s "found renegotiation extension" \
5482 -s "server hello, secure renegotiation extension" \
5483 -c "found renegotiation extension" \
5484 -c "=> renegotiate" \
5485 -s "=> renegotiate" \
5486 -S "write hello request" \
5487 -S "client hello v3, signature_algorithm ext: 2" # Is SHA-1 negotiated?
5488
5489# Checks that no Signature Algorithm with SHA-1 gets negotiated. Negotiating SHA-1 would mean that
5490# the server did not parse the Signature Algorithm extension. This test is valid only if an MD
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]5491# algorithm stronger than SHA-1 is enabled in mbedtls_config.h
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5492requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]5493run_test "Renegotiation: Signature Algorithms parsing, server-initiated" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5494 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]5495 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
5496 0 \
5497 -c "client hello, adding renegotiation extension" \
5498 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5499 -s "found renegotiation extension" \
5500 -s "server hello, secure renegotiation extension" \
5501 -c "found renegotiation extension" \
5502 -c "=> renegotiate" \
5503 -s "=> renegotiate" \
5504 -s "write hello request" \
5505 -S "client hello v3, signature_algorithm ext: 2" # Is SHA-1 negotiated?
5506
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5507requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5508run_test "Renegotiation: double" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5509 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5510 "$P_CLI force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5511 0 \
5512 -c "client hello, adding renegotiation extension" \
5513 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5514 -s "found renegotiation extension" \
5515 -s "server hello, secure renegotiation extension" \
5516 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5517 -c "=> renegotiate" \
5518 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5519 -s "write hello request"
5520
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5521requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Andrzej Kurek8ea68722020-04-03 06:40:47 -0400[diff] [blame]5522requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]5523requires_max_content_len 2048
Andrzej Kurek8ea68722020-04-03 06:40:47 -0400[diff] [blame]5524run_test "Renegotiation with max fragment length: client 2048, server 512" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5525 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1 max_frag_len=512" \
Andrzej Kurek8ea68722020-04-03 06:40:47 -0400[diff] [blame]5526 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 max_frag_len=2048 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
5527 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]5528 -c "Maximum incoming record payload length is 2048" \
5529 -c "Maximum outgoing record payload length is 2048" \
5530 -s "Maximum incoming record payload length is 2048" \
5531 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek8ea68722020-04-03 06:40:47 -0400[diff] [blame]5532 -c "client hello, adding max_fragment_length extension" \
5533 -s "found max fragment length extension" \
5534 -s "server hello, max_fragment_length extension" \
5535 -c "found max_fragment_length extension" \
5536 -c "client hello, adding renegotiation extension" \
5537 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5538 -s "found renegotiation extension" \
5539 -s "server hello, secure renegotiation extension" \
5540 -c "found renegotiation extension" \
5541 -c "=> renegotiate" \
5542 -s "=> renegotiate" \
5543 -s "write hello request"
5544
5545requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5546run_test "Renegotiation: client-initiated, server-rejected" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5547 "$P_SRV debug_level=3 exchanges=2 renegotiation=0 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5548 "$P_CLI force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5549 1 \
5550 -c "client hello, adding renegotiation extension" \
5551 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5552 -S "found renegotiation extension" \
5553 -s "server hello, secure renegotiation extension" \
5554 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5555 -c "=> renegotiate" \
5556 -S "=> renegotiate" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5557 -S "write hello request" \
Manuel Pégourié-Gonnard65919622014-08-19 12:50:30 +0200[diff] [blame]5558 -c "SSL - Unexpected message at ServerHello in renegotiation" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5559 -c "failed"
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5560
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5561requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5562run_test "Renegotiation: server-initiated, client-rejected, default" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5563 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5564 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5565 0 \
5566 -C "client hello, adding renegotiation extension" \
5567 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5568 -S "found renegotiation extension" \
5569 -s "server hello, secure renegotiation extension" \
5570 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5571 -C "=> renegotiate" \
5572 -S "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5573 -s "write hello request" \
Manuel Pégourié-Gonnarda9964db2014-07-03 19:29:16 +0200[diff] [blame]5574 -S "SSL - An unexpected message was received from our peer" \
5575 -S "failed"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]5576
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5577requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5578run_test "Renegotiation: server-initiated, client-rejected, not enforced" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5579 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5580 renego_delay=-1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5581 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5582 0 \
5583 -C "client hello, adding renegotiation extension" \
5584 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5585 -S "found renegotiation extension" \
5586 -s "server hello, secure renegotiation extension" \
5587 -c "found renegotiation extension" \
5588 -C "=> renegotiate" \
5589 -S "=> renegotiate" \
5590 -s "write hello request" \
5591 -S "SSL - An unexpected message was received from our peer" \
5592 -S "failed"
5593
Manuel Pégourié-Gonnarda8c0a0d2014-08-15 12:07:38 +0200[diff] [blame]5594# delay 2 for 1 alert record + 1 application data record
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5595requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5596run_test "Renegotiation: server-initiated, client-rejected, delay 2" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5597 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5598 renego_delay=2 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5599 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5600 0 \
5601 -C "client hello, adding renegotiation extension" \
5602 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5603 -S "found renegotiation extension" \
5604 -s "server hello, secure renegotiation extension" \
5605 -c "found renegotiation extension" \
5606 -C "=> renegotiate" \
5607 -S "=> renegotiate" \
5608 -s "write hello request" \
5609 -S "SSL - An unexpected message was received from our peer" \
5610 -S "failed"
5611
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5612requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5613run_test "Renegotiation: server-initiated, client-rejected, delay 0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5614 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5615 renego_delay=0 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5616 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5617 0 \
5618 -C "client hello, adding renegotiation extension" \
5619 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5620 -S "found renegotiation extension" \
5621 -s "server hello, secure renegotiation extension" \
5622 -c "found renegotiation extension" \
5623 -C "=> renegotiate" \
5624 -S "=> renegotiate" \
5625 -s "write hello request" \
Manuel Pégourié-Gonnarda8c0a0d2014-08-15 12:07:38 +0200[diff] [blame]5626 -s "SSL - An unexpected message was received from our peer"
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5627
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5628requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5629run_test "Renegotiation: server-initiated, client-accepted, delay 0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5630 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5631 renego_delay=0 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5632 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5633 0 \
5634 -c "client hello, adding renegotiation extension" \
5635 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5636 -s "found renegotiation extension" \
5637 -s "server hello, secure renegotiation extension" \
5638 -c "found renegotiation extension" \
5639 -c "=> renegotiate" \
5640 -s "=> renegotiate" \
5641 -s "write hello request" \
5642 -S "SSL - An unexpected message was received from our peer" \
5643 -S "failed"
5644
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5645requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5646run_test "Renegotiation: periodic, just below period" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5647 "$P_SRV debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5648 "$P_CLI force_version=tls12 debug_level=3 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5649 0 \
5650 -C "client hello, adding renegotiation extension" \
5651 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5652 -S "found renegotiation extension" \
5653 -s "server hello, secure renegotiation extension" \
5654 -c "found renegotiation extension" \
5655 -S "record counter limit reached: renegotiate" \
5656 -C "=> renegotiate" \
5657 -S "=> renegotiate" \
5658 -S "write hello request" \
5659 -S "SSL - An unexpected message was received from our peer" \
5660 -S "failed"
5661
Manuel Pégourié-Gonnard9835bc02015-01-14 14:41:58 +0100[diff] [blame]5662# one extra exchange to be able to complete renego
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5663requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5664run_test "Renegotiation: periodic, just above period" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5665 "$P_SRV force_version=tls12 debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard9835bc02015-01-14 14:41:58 +0100[diff] [blame]5666 "$P_CLI debug_level=3 exchanges=4 renegotiation=1" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5667 0 \
5668 -c "client hello, adding renegotiation extension" \
5669 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5670 -s "found renegotiation extension" \
5671 -s "server hello, secure renegotiation extension" \
5672 -c "found renegotiation extension" \
5673 -s "record counter limit reached: renegotiate" \
5674 -c "=> renegotiate" \
5675 -s "=> renegotiate" \
5676 -s "write hello request" \
5677 -S "SSL - An unexpected message was received from our peer" \
5678 -S "failed"
5679
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5680requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5681run_test "Renegotiation: periodic, two times period" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5682 "$P_SRV debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5683 "$P_CLI force_version=tls12 debug_level=3 exchanges=7 renegotiation=1" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5684 0 \
5685 -c "client hello, adding renegotiation extension" \
5686 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5687 -s "found renegotiation extension" \
5688 -s "server hello, secure renegotiation extension" \
5689 -c "found renegotiation extension" \
5690 -s "record counter limit reached: renegotiate" \
5691 -c "=> renegotiate" \
5692 -s "=> renegotiate" \
5693 -s "write hello request" \
5694 -S "SSL - An unexpected message was received from our peer" \
5695 -S "failed"
5696
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5697requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5698run_test "Renegotiation: periodic, above period, disabled" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5699 "$P_SRV force_version=tls12 debug_level=3 exchanges=9 renegotiation=0 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5700 "$P_CLI debug_level=3 exchanges=4 renegotiation=1" \
5701 0 \
5702 -C "client hello, adding renegotiation extension" \
5703 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5704 -S "found renegotiation extension" \
5705 -s "server hello, secure renegotiation extension" \
5706 -c "found renegotiation extension" \
5707 -S "record counter limit reached: renegotiate" \
5708 -C "=> renegotiate" \
5709 -S "=> renegotiate" \
5710 -S "write hello request" \
5711 -S "SSL - An unexpected message was received from our peer" \
5712 -S "failed"
5713
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5714requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5715run_test "Renegotiation: nbio, client-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5716 "$P_SRV debug_level=3 nbio=2 exchanges=2 renegotiation=1 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5717 "$P_CLI force_version=tls12 debug_level=3 nbio=2 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnardf07f4212014-08-15 19:04:47 +0200[diff] [blame]5718 0 \
5719 -c "client hello, adding renegotiation extension" \
5720 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5721 -s "found renegotiation extension" \
5722 -s "server hello, secure renegotiation extension" \
5723 -c "found renegotiation extension" \
5724 -c "=> renegotiate" \
5725 -s "=> renegotiate" \
5726 -S "write hello request"
5727
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5728requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5729run_test "Renegotiation: nbio, server-initiated" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5730 "$P_SRV force_version=tls12 debug_level=3 nbio=2 exchanges=2 renegotiation=1 renegotiate=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5731 "$P_CLI debug_level=3 nbio=2 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnardf07f4212014-08-15 19:04:47 +0200[diff] [blame]5732 0 \
5733 -c "client hello, adding renegotiation extension" \
5734 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5735 -s "found renegotiation extension" \
5736 -s "server hello, secure renegotiation extension" \
5737 -c "found renegotiation extension" \
5738 -c "=> renegotiate" \
5739 -s "=> renegotiate" \
5740 -s "write hello request"
5741
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5742requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5743requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5744run_test "Renegotiation: openssl server, client-initiated" \
Gilles Peskineed8cc462024-09-06 13:52:14 +0200[diff] [blame]5745 "$O_SRV -www $OPENSSL_S_SERVER_CLIENT_RENEGOTIATION -tls1_2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5746 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]5747 0 \
5748 -c "client hello, adding renegotiation extension" \
5749 -c "found renegotiation extension" \
5750 -c "=> renegotiate" \
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]5751 -C "ssl_handshake() returned" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]5752 -C "error" \
5753 -c "HTTP/1.0 200 [Oo][Kk]"
5754
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5755requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5756requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5757requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5758run_test "Renegotiation: gnutls server strict, client-initiated" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5759 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5760 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]5761 0 \
5762 -c "client hello, adding renegotiation extension" \
5763 -c "found renegotiation extension" \
5764 -c "=> renegotiate" \
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]5765 -C "ssl_handshake() returned" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]5766 -C "error" \
5767 -c "HTTP/1.0 200 [Oo][Kk]"
5768
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5769requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5770requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5771requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5772run_test "Renegotiation: gnutls server unsafe, client-initiated default" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5773 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5774 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
5775 1 \
5776 -c "client hello, adding renegotiation extension" \
5777 -C "found renegotiation extension" \
5778 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5779 -c "mbedtls_ssl_handshake() returned" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5780 -c "error" \
5781 -C "HTTP/1.0 200 [Oo][Kk]"
5782
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5783requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5784requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5785requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5786run_test "Renegotiation: gnutls server unsafe, client-inititated no legacy" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5787 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5788 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1 \
5789 allow_legacy=0" \
5790 1 \
5791 -c "client hello, adding renegotiation extension" \
5792 -C "found renegotiation extension" \
5793 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5794 -c "mbedtls_ssl_handshake() returned" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5795 -c "error" \
5796 -C "HTTP/1.0 200 [Oo][Kk]"
5797
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5798requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5799requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5800requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5801run_test "Renegotiation: gnutls server unsafe, client-inititated legacy" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5802 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5803 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1 \
5804 allow_legacy=1" \
5805 0 \
5806 -c "client hello, adding renegotiation extension" \
5807 -C "found renegotiation extension" \
5808 -c "=> renegotiate" \
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]5809 -C "ssl_handshake() returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]5810 -C "error" \
5811 -c "HTTP/1.0 200 [Oo][Kk]"
5812
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5813requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5814requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard30d16eb2014-08-19 17:43:50 +0200[diff] [blame]5815run_test "Renegotiation: DTLS, client-initiated" \
5816 "$P_SRV debug_level=3 dtls=1 exchanges=2 renegotiation=1" \
5817 "$P_CLI debug_level=3 dtls=1 exchanges=2 renegotiation=1 renegotiate=1" \
5818 0 \
5819 -c "client hello, adding renegotiation extension" \
5820 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5821 -s "found renegotiation extension" \
5822 -s "server hello, secure renegotiation extension" \
5823 -c "found renegotiation extension" \
5824 -c "=> renegotiate" \
5825 -s "=> renegotiate" \
5826 -S "write hello request"
5827
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5828requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5829requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardc392b242014-08-19 17:53:11 +0200[diff] [blame]5830run_test "Renegotiation: DTLS, server-initiated" \
5831 "$P_SRV debug_level=3 dtls=1 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnarddf9a0a82014-10-02 14:17:18 +0200[diff] [blame]5832 "$P_CLI debug_level=3 dtls=1 exchanges=2 renegotiation=1 \
5833 read_timeout=1000 max_resend=2" \
Manuel Pégourié-Gonnardc392b242014-08-19 17:53:11 +0200[diff] [blame]5834 0 \
5835 -c "client hello, adding renegotiation extension" \
5836 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5837 -s "found renegotiation extension" \
5838 -s "server hello, secure renegotiation extension" \
5839 -c "found renegotiation extension" \
5840 -c "=> renegotiate" \
5841 -s "=> renegotiate" \
5842 -s "write hello request"
5843
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5844requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5845requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres AG692ad842017-01-19 16:30:57 +0000[diff] [blame]5846run_test "Renegotiation: DTLS, renego_period overflow" \
5847 "$P_SRV debug_level=3 dtls=1 exchanges=4 renegotiation=1 renego_period=18446462598732840962 auth_mode=optional" \
5848 "$P_CLI debug_level=3 dtls=1 exchanges=4 renegotiation=1" \
5849 0 \
5850 -c "client hello, adding renegotiation extension" \
5851 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5852 -s "found renegotiation extension" \
5853 -s "server hello, secure renegotiation extension" \
5854 -s "record counter limit reached: renegotiate" \
5855 -c "=> renegotiate" \
5856 -s "=> renegotiate" \
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5857 -s "write hello request"
Andres AG692ad842017-01-19 16:30:57 +0000[diff] [blame]5858
Manuel Pégourié-Gonnard96999962015-02-17 16:02:37 +0000[diff] [blame]5859requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5860requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5861requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardf1499f62014-08-31 17:13:13 +0200[diff] [blame]5862run_test "Renegotiation: DTLS, gnutls server, client-initiated" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5863 "$G_NEXT_SRV -u --mtu 4096" \
Manuel Pégourié-Gonnardf1499f62014-08-31 17:13:13 +0200[diff] [blame]5864 "$P_CLI debug_level=3 dtls=1 exchanges=1 renegotiation=1 renegotiate=1" \
5865 0 \
5866 -c "client hello, adding renegotiation extension" \
5867 -c "found renegotiation extension" \
5868 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5869 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardf1499f62014-08-31 17:13:13 +0200[diff] [blame]5870 -C "error" \
5871 -s "Extra-header:"
5872
Shaun Case8b0ecbc2021-12-20 21:14:10 -0800[diff] [blame]5873# Test for the "secure renegotiation" extension only (no actual renegotiation)
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5874
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5875requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5876requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5877requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5878run_test "Renego ext: gnutls server strict, client default" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5879 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5880 "$P_CLI debug_level=3" \
5881 0 \
5882 -c "found renegotiation extension" \
5883 -C "error" \
5884 -c "HTTP/1.0 200 [Oo][Kk]"
5885
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5886requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5887requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5888requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5889run_test "Renego ext: gnutls server unsafe, client default" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5890 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5891 "$P_CLI debug_level=3" \
5892 0 \
5893 -C "found renegotiation extension" \
5894 -C "error" \
5895 -c "HTTP/1.0 200 [Oo][Kk]"
5896
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5897requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5898requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5899requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5900run_test "Renego ext: gnutls server unsafe, client break legacy" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5901 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5902 "$P_CLI debug_level=3 allow_legacy=-1" \
5903 1 \
5904 -C "found renegotiation extension" \
5905 -c "error" \
5906 -C "HTTP/1.0 200 [Oo][Kk]"
5907
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5908requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5909requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5910requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5911run_test "Renego ext: gnutls client strict, server default" \
5912 "$P_SRV debug_level=3" \
Gilles Peskinee373c942024-04-29 17:44:19 +0200[diff] [blame]5913 "$G_CLI --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5914 0 \
5915 -s "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
5916 -s "server hello, secure renegotiation extension"
5917
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5918requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5919requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5920requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5921run_test "Renego ext: gnutls client unsafe, server default" \
5922 "$P_SRV debug_level=3" \
Gilles Peskinee373c942024-04-29 17:44:19 +0200[diff] [blame]5923 "$G_CLI --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5924 0 \
5925 -S "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
5926 -S "server hello, secure renegotiation extension"
5927
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5928requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5929requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5930requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5931run_test "Renego ext: gnutls client unsafe, server break legacy" \
5932 "$P_SRV debug_level=3 allow_legacy=-1" \
Gilles Peskinee373c942024-04-29 17:44:19 +0200[diff] [blame]5933 "$G_CLI --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5934 1 \
5935 -S "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
5936 -S "server hello, secure renegotiation extension"
5937
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5938# Tests for silently dropping trailing extra bytes in .der certificates
5939
5940requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5941requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5942run_test "DER format: no trailing bytes" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5943 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der0.crt \
5944 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5945 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5946 0 \
5947 -c "Handshake was completed" \
5948
5949requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5950requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5951run_test "DER format: with a trailing zero byte" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5952 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der1a.crt \
5953 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5954 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5955 0 \
5956 -c "Handshake was completed" \
5957
5958requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5959requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5960run_test "DER format: with a trailing random byte" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5961 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der1b.crt \
5962 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5963 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5964 0 \
5965 -c "Handshake was completed" \
5966
5967requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5968requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5969run_test "DER format: with 2 trailing random bytes" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5970 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der2.crt \
5971 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5972 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5973 0 \
5974 -c "Handshake was completed" \
5975
5976requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5977requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5978run_test "DER format: with 4 trailing random bytes" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5979 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der4.crt \
5980 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5981 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5982 0 \
5983 -c "Handshake was completed" \
5984
5985requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5986requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5987run_test "DER format: with 8 trailing random bytes" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5988 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der8.crt \
5989 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5990 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5991 0 \
5992 -c "Handshake was completed" \
5993
5994requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5995requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5996run_test "DER format: with 9 trailing random bytes" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5997 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der9.crt \
5998 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5999 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]6000 0 \
6001 -c "Handshake was completed" \
6002
Jarno Lamsaf7a7f9e2019-04-01 15:11:54 +0300[diff] [blame]6003# Tests for auth_mode, there are duplicated tests using ca callback for authentication
6004# When updating these tests, modify the matching authentication tests accordingly
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6005
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]6006# The next 4 cases test the 3 auth modes with a badly signed server cert.
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6007run_test "Authentication: server badcert, client required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6008 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6009 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]6010 "$P_CLI debug_level=3 auth_mode=required" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6011 1 \
6012 -c "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]6013 -c "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6014 -c "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]6015 -c "send alert level=2 message=48" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6016 -c "X509 - Certificate verification failed"
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]6017 # MBEDTLS_X509_BADCERT_NOT_TRUSTED -> MBEDTLS_SSL_ALERT_MSG_UNKNOWN_CA
6018# We don't check that the server receives the alert because it might
6019# detect that its write end of the connection is closed and abort
6020# before reading the alert message.
6021
6022run_test "Authentication: server badcert, client required (1.2)" \
6023 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6024 key_file=$DATA_FILES_PATH/server5.key" \
6025 "$P_CLI force_version=tls12 debug_level=3 auth_mode=required" \
6026 1 \
6027 -c "x509_verify_cert() returned" \
6028 -c "! The certificate is not correctly signed by the trusted CA" \
6029 -c "! mbedtls_ssl_handshake returned" \
6030 -c "send alert level=2 message=48" \
6031 -c "X509 - Certificate verification failed"
6032 # MBEDTLS_X509_BADCERT_NOT_TRUSTED -> MBEDTLS_SSL_ALERT_MSG_UNKNOWN_CA
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6033
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6034run_test "Authentication: server badcert, client optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6035 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6036 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnarde1cc9262024-08-14 09:47:38 +0200[diff] [blame]6037 "$P_CLI force_version=tls13 debug_level=3 auth_mode=optional" \
6038 0 \
6039 -c "x509_verify_cert() returned" \
6040 -c "! The certificate is not correctly signed by the trusted CA" \
6041 -C "! mbedtls_ssl_handshake returned" \
6042 -C "send alert level=2 message=48" \
6043 -C "X509 - Certificate verification failed"
6044
6045run_test "Authentication: server badcert, client optional (1.2)" \
6046 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6047 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]6048 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6049 0 \
6050 -c "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]6051 -c "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6052 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]6053 -C "send alert level=2 message=48" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6054 -C "X509 - Certificate verification failed"
6055
Manuel Pégourié-Gonnarda3cf1a52024-08-05 11:21:01 +0200[diff] [blame]6056run_test "Authentication: server badcert, client none" \
6057 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6058 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard2b98a4e2024-08-14 10:44:02 +0200[diff] [blame]6059 "$P_CLI debug_level=3 auth_mode=none" \
6060 0 \
6061 -C "x509_verify_cert() returned" \
6062 -C "! The certificate is not correctly signed by the trusted CA" \
6063 -C "! mbedtls_ssl_handshake returned" \
6064 -C "send alert level=2 message=48" \
6065 -C "X509 - Certificate verification failed"
6066
6067run_test "Authentication: server badcert, client none (1.2)" \
6068 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6069 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]6070 "$P_CLI force_version=tls12 debug_level=3 auth_mode=none" \
Manuel Pégourié-Gonnarda3cf1a52024-08-05 11:21:01 +0200[diff] [blame]6071 0 \
6072 -C "x509_verify_cert() returned" \
6073 -C "! The certificate is not correctly signed by the trusted CA" \
6074 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]6075 -C "send alert level=2 message=48" \
Manuel Pégourié-Gonnarda3cf1a52024-08-05 11:21:01 +0200[diff] [blame]6076 -C "X509 - Certificate verification failed"
6077
Manuel Pégourié-Gonnarda0a781e2024-08-14 10:34:53 +0200[diff] [blame]6078run_test "Authentication: server goodcert, client required, no trusted CA" \
6079 "$P_SRV" \
6080 "$P_CLI debug_level=3 auth_mode=required ca_file=none ca_path=none" \
6081 1 \
6082 -c "x509_verify_cert() returned" \
6083 -c "! The certificate is not correctly signed by the trusted CA" \
6084 -c "! Certificate verification flags"\
6085 -c "! mbedtls_ssl_handshake returned" \
6086 -c "SSL - No CA Chain is set, but required to operate"
6087
6088requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
6089run_test "Authentication: server goodcert, client required, no trusted CA (1.2)" \
6090 "$P_SRV force_version=tls12" \
6091 "$P_CLI debug_level=3 auth_mode=required ca_file=none ca_path=none" \
6092 1 \
6093 -c "x509_verify_cert() returned" \
6094 -c "! The certificate is not correctly signed by the trusted CA" \
6095 -c "! Certificate verification flags"\
6096 -c "! mbedtls_ssl_handshake returned" \
6097 -c "SSL - No CA Chain is set, but required to operate"
Manuel Pégourié-Gonnarde1cc9262024-08-14 09:47:38 +0200[diff] [blame]6098
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6099run_test "Authentication: server goodcert, client optional, no trusted CA" \
6100 "$P_SRV" \
Manuel Pégourié-Gonnarde1cc9262024-08-14 09:47:38 +0200[diff] [blame]6101 "$P_CLI debug_level=3 auth_mode=optional ca_file=none ca_path=none" \
6102 0 \
6103 -c "x509_verify_cert() returned" \
6104 -c "! The certificate is not correctly signed by the trusted CA" \
6105 -c "! Certificate verification flags"\
6106 -C "! mbedtls_ssl_handshake returned" \
6107 -C "X509 - Certificate verification failed" \
6108 -C "SSL - No CA Chain is set, but required to operate"
6109
6110requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
6111run_test "Authentication: server goodcert, client optional, no trusted CA (1.2)" \
6112 "$P_SRV" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]6113 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional ca_file=none ca_path=none" \
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6114 0 \
6115 -c "x509_verify_cert() returned" \
6116 -c "! The certificate is not correctly signed by the trusted CA" \
6117 -c "! Certificate verification flags"\
6118 -C "! mbedtls_ssl_handshake returned" \
6119 -C "X509 - Certificate verification failed" \
6120 -C "SSL - No CA Chain is set, but required to operate"
6121
Manuel Pégourié-Gonnard2b98a4e2024-08-14 10:44:02 +0200[diff] [blame]6122run_test "Authentication: server goodcert, client none, no trusted CA" \
6123 "$P_SRV" \
6124 "$P_CLI debug_level=3 auth_mode=none ca_file=none ca_path=none" \
6125 0 \
6126 -C "x509_verify_cert() returned" \
6127 -C "! The certificate is not correctly signed by the trusted CA" \
6128 -C "! Certificate verification flags"\
6129 -C "! mbedtls_ssl_handshake returned" \
6130 -C "X509 - Certificate verification failed" \
6131 -C "SSL - No CA Chain is set, but required to operate"
6132
6133requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
6134run_test "Authentication: server goodcert, client none, no trusted CA (1.2)" \
6135 "$P_SRV" \
6136 "$P_CLI force_version=tls12 debug_level=3 auth_mode=none ca_file=none ca_path=none" \
6137 0 \
6138 -C "x509_verify_cert() returned" \
6139 -C "! The certificate is not correctly signed by the trusted CA" \
6140 -C "! Certificate verification flags"\
6141 -C "! mbedtls_ssl_handshake returned" \
6142 -C "X509 - Certificate verification failed" \
6143 -C "SSL - No CA Chain is set, but required to operate"
Manuel Pégourié-Gonnard060e2842024-08-05 11:10:47 +0200[diff] [blame]6144
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6145# The next few tests check what happens if the server has a valid certificate
6146# that does not match its name (impersonation).
6147
6148run_test "Authentication: hostname match, client required" \
6149 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6150 "$P_CLI auth_mode=required server_name=localhost debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6151 0 \
6152 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6153 -C "Certificate verification without having set hostname" \
6154 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6155 -C "x509_verify_cert() returned -" \
6156 -C "! mbedtls_ssl_handshake returned" \
6157 -C "X509 - Certificate verification failed"
6158
Gilles Peskineda0e32e2025-02-13 21:46:00 +0100[diff] [blame]6159run_test "Authentication: hostname match, client required, CA callback" \
6160 "$P_SRV" \
6161 "$P_CLI auth_mode=required server_name=localhost debug_level=3 ca_callback=1" \
6162 0 \
6163 -C "does not match with the expected CN" \
6164 -C "Certificate verification without having set hostname" \
6165 -C "Certificate verification without CN verification" \
6166 -c "use CA callback for X.509 CRT verification" \
6167 -C "x509_verify_cert() returned -" \
6168 -C "! mbedtls_ssl_handshake returned" \
6169 -C "X509 - Certificate verification failed"
6170
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6171run_test "Authentication: hostname mismatch (wrong), client required" \
6172 "$P_SRV" \
6173 "$P_CLI auth_mode=required server_name=wrong-name debug_level=1" \
6174 1 \
6175 -c "does not match with the expected CN" \
6176 -c "x509_verify_cert() returned -" \
6177 -c "! mbedtls_ssl_handshake returned" \
6178 -c "X509 - Certificate verification failed"
6179
6180run_test "Authentication: hostname mismatch (empty), client required" \
6181 "$P_SRV" \
6182 "$P_CLI auth_mode=required server_name= debug_level=1" \
6183 1 \
6184 -c "does not match with the expected CN" \
6185 -c "x509_verify_cert() returned -" \
6186 -c "! mbedtls_ssl_handshake returned" \
6187 -c "X509 - Certificate verification failed"
6188
6189run_test "Authentication: hostname mismatch (truncated), client required" \
6190 "$P_SRV" \
6191 "$P_CLI auth_mode=required server_name=localhos debug_level=1" \
6192 1 \
6193 -c "does not match with the expected CN" \
6194 -c "x509_verify_cert() returned -" \
6195 -c "! mbedtls_ssl_handshake returned" \
6196 -c "X509 - Certificate verification failed"
6197
6198run_test "Authentication: hostname mismatch (last char), client required" \
6199 "$P_SRV" \
6200 "$P_CLI auth_mode=required server_name=localhoss debug_level=1" \
6201 1 \
6202 -c "does not match with the expected CN" \
6203 -c "x509_verify_cert() returned -" \
6204 -c "! mbedtls_ssl_handshake returned" \
6205 -c "X509 - Certificate verification failed"
6206
6207run_test "Authentication: hostname mismatch (trailing), client required" \
6208 "$P_SRV" \
6209 "$P_CLI auth_mode=required server_name=localhostt debug_level=1" \
6210 1 \
6211 -c "does not match with the expected CN" \
6212 -c "x509_verify_cert() returned -" \
6213 -c "! mbedtls_ssl_handshake returned" \
6214 -c "X509 - Certificate verification failed"
6215
6216run_test "Authentication: hostname mismatch, client optional" \
6217 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6218 "$P_CLI auth_mode=optional server_name=wrong-name debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6219 0 \
6220 -c "does not match with the expected CN" \
6221 -c "x509_verify_cert() returned -" \
6222 -C "X509 - Certificate verification failed"
6223
6224run_test "Authentication: hostname mismatch, client none" \
6225 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6226 "$P_CLI auth_mode=none server_name=wrong-name debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6227 0 \
6228 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6229 -C "Certificate verification without having set hostname" \
6230 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6231 -C "x509_verify_cert() returned -" \
6232 -C "X509 - Certificate verification failed"
6233
6234run_test "Authentication: hostname null, client required" \
6235 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6236 "$P_CLI auth_mode=required set_hostname=NULL debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6237 0 \
6238 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6239 -C "Certificate verification without having set hostname" \
6240 -c "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6241 -C "x509_verify_cert() returned -" \
6242 -C "! mbedtls_ssl_handshake returned" \
6243 -C "X509 - Certificate verification failed"
6244
6245run_test "Authentication: hostname null, client optional" \
6246 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6247 "$P_CLI auth_mode=optional set_hostname=NULL debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6248 0 \
6249 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6250 -C "Certificate verification without having set hostname" \
6251 -c "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6252 -C "x509_verify_cert() returned -" \
6253 -C "X509 - Certificate verification failed"
6254
6255run_test "Authentication: hostname null, client none" \
6256 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6257 "$P_CLI auth_mode=none set_hostname=NULL debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6258 0 \
6259 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6260 -C "Certificate verification without having set hostname" \
6261 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6262 -C "x509_verify_cert() returned -" \
6263 -C "X509 - Certificate verification failed"
6264
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6265requires_config_disabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6266run_test "Authentication: hostname unset, client required, secure config" \
6267 "$P_SRV" \
6268 "$P_CLI auth_mode=required set_hostname=no debug_level=2" \
6269 1 \
6270 -C "does not match with the expected CN" \
6271 -c "Certificate verification without having set hostname" \
6272 -C "Certificate verification without CN verification" \
6273 -c "get_hostname_for_verification() returned -" \
6274 -C "x509_verify_cert() returned -" \
6275 -c "! mbedtls_ssl_handshake returned" \
6276 -C "X509 - Certificate verification failed"
6277
6278requires_config_enabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6279run_test "Authentication: hostname unset, client required, historical config" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6280 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6281 "$P_CLI auth_mode=required set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6282 0 \
6283 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6284 -c "Certificate verification without having set hostname" \
6285 -c "Certificate verification without CN verification" \
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6286 -C "get_hostname_for_verification() returned -" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6287 -C "x509_verify_cert() returned -" \
6288 -C "! mbedtls_ssl_handshake returned" \
6289 -C "X509 - Certificate verification failed"
6290
Gilles Peskineda0e32e2025-02-13 21:46:00 +0100[diff] [blame]6291requires_config_disabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6292run_test "Authentication: hostname unset, client required, secure config, CA callback" \
6293 "$P_SRV" \
6294 "$P_CLI auth_mode=required set_hostname=no debug_level=3 ca_callback=1" \
6295 1 \
6296 -C "does not match with the expected CN" \
6297 -c "Certificate verification without having set hostname" \
6298 -C "Certificate verification without CN verification" \
6299 -c "get_hostname_for_verification() returned -" \
6300 -C "use CA callback for X.509 CRT verification" \
6301 -C "x509_verify_cert() returned -" \
6302 -c "! mbedtls_ssl_handshake returned" \
6303 -C "X509 - Certificate verification failed"
6304
6305requires_config_enabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6306run_test "Authentication: hostname unset, client required, historical config, CA callback" \
6307 "$P_SRV" \
6308 "$P_CLI auth_mode=required set_hostname=no debug_level=3 ca_callback=1" \
6309 0 \
6310 -C "does not match with the expected CN" \
6311 -c "Certificate verification without having set hostname" \
6312 -c "Certificate verification without CN verification" \
6313 -C "get_hostname_for_verification() returned -" \
6314 -c "use CA callback for X.509 CRT verification" \
6315 -C "x509_verify_cert() returned -" \
6316 -C "! mbedtls_ssl_handshake returned" \
6317 -C "X509 - Certificate verification failed"
6318
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6319run_test "Authentication: hostname unset, client optional" \
6320 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6321 "$P_CLI auth_mode=optional set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6322 0 \
6323 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6324 -c "Certificate verification without having set hostname" \
6325 -c "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6326 -C "x509_verify_cert() returned -" \
6327 -C "X509 - Certificate verification failed"
6328
6329run_test "Authentication: hostname unset, client none" \
6330 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6331 "$P_CLI auth_mode=none set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6332 0 \
6333 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6334 -C "Certificate verification without having set hostname" \
6335 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6336 -C "x509_verify_cert() returned -" \
6337 -C "X509 - Certificate verification failed"
6338
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6339requires_config_disabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6340run_test "Authentication: hostname unset, client default, secure config, server picks cert, 1.2" \
6341 "$P_SRV force_version=tls12 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
6342 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
6343 1 \
6344 -C "does not match with the expected CN" \
6345 -c "Certificate verification without having set hostname" \
6346 -C "Certificate verification without CN verification" \
6347 -c "get_hostname_for_verification() returned -" \
6348 -C "x509_verify_cert() returned -" \
6349 -C "X509 - Certificate verification failed"
6350
6351requires_config_disabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6352requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
6353run_test "Authentication: hostname unset, client default, secure config, server picks cert, 1.3" \
6354 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral" \
6355 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
6356 1 \
6357 -C "does not match with the expected CN" \
6358 -c "Certificate verification without having set hostname" \
6359 -C "Certificate verification without CN verification" \
6360 -c "get_hostname_for_verification() returned -" \
6361 -C "x509_verify_cert() returned -" \
6362 -C "X509 - Certificate verification failed"
6363
6364requires_config_enabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6365run_test "Authentication: hostname unset, client default, historical config, server picks cert, 1.2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6366 "$P_SRV force_version=tls12 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6367 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6368 0 \
6369 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6370 -c "Certificate verification without having set hostname" \
6371 -c "Certificate verification without CN verification" \
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6372 -C "get_hostname_for_verification() returned -" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6373 -C "x509_verify_cert() returned -" \
6374 -C "X509 - Certificate verification failed"
6375
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6376requires_config_enabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6377requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6378run_test "Authentication: hostname unset, client default, historical config, server picks cert, 1.3" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6379 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6380 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6381 0 \
6382 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6383 -c "Certificate verification without having set hostname" \
6384 -c "Certificate verification without CN verification" \
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6385 -C "get_hostname_for_verification() returned -" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6386 -C "x509_verify_cert() returned -" \
6387 -C "X509 - Certificate verification failed"
6388
6389run_test "Authentication: hostname unset, client default, server picks PSK, 1.2" \
6390 "$P_SRV force_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8 psk=73776f726466697368 psk_identity=foo" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6391 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6392 0 \
6393 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6394 -C "Certificate verification without having set hostname" \
6395 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6396 -C "x509_verify_cert() returned -" \
6397 -C "X509 - Certificate verification failed"
6398
6399requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
6400run_test "Authentication: hostname unset, client default, server picks PSK, 1.3" \
6401 "$P_SRV force_version=tls13 tls13_kex_modes=psk psk=73776f726466697368 psk_identity=foo" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6402 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6403 0 \
6404 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6405 -C "Certificate verification without having set hostname" \
6406 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6407 -C "x509_verify_cert() returned -" \
6408 -C "X509 - Certificate verification failed"
6409
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6410# The purpose of the next two tests is to test the client's behaviour when receiving a server
6411# certificate with an unsupported elliptic curve. This should usually not happen because
6412# the client informs the server about the supported curves - it does, though, in the
6413# corner case of a static ECDH suite, because the server doesn't check the curve on that
6414# occasion (to be fixed). If that bug's fixed, the test needs to be altered to use a
6415# different means to have the server ignoring the client's supported curve list.
6416
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6417run_test "Authentication: server ECDH p256v1, client required, p256v1 unsupported" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6418 "$P_SRV debug_level=1 key_file=$DATA_FILES_PATH/server5.key \
6419 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]6420 "$P_CLI force_version=tls12 debug_level=3 auth_mode=required groups=secp521r1" \
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6421 1 \
6422 -c "bad certificate (EC key curve)"\
6423 -c "! Certificate verification flags"\
6424 -C "bad server certificate (ECDH curve)" # Expect failure at earlier verification stage
6425
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6426run_test "Authentication: server ECDH p256v1, client optional, p256v1 unsupported" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6427 "$P_SRV debug_level=1 key_file=$DATA_FILES_PATH/server5.key \
6428 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]6429 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional groups=secp521r1" \
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6430 1 \
6431 -c "bad certificate (EC key curve)"\
6432 -c "! Certificate verification flags"\
6433 -c "bad server certificate (ECDH curve)" # Expect failure only at ECDH params check
6434
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6435requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6436run_test "Authentication: client SHA256, server required" \
6437 "$P_SRV auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6438 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server6.crt \
6439 key_file=$DATA_FILES_PATH/server6.key \
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6440 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
6441 0 \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]6442 -c "Supported Signature Algorithm found: 04 " \
6443 -c "Supported Signature Algorithm found: 05 "
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6444
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6445requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6446run_test "Authentication: client SHA384, server required" \
6447 "$P_SRV auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6448 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server6.crt \
6449 key_file=$DATA_FILES_PATH/server6.key \
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6450 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
6451 0 \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]6452 -c "Supported Signature Algorithm found: 04 " \
6453 -c "Supported Signature Algorithm found: 05 "
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6454
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6455run_test "Authentication: client has no cert, server required (TLS)" \
6456 "$P_SRV debug_level=3 auth_mode=required" \
6457 "$P_CLI debug_level=3 crt_file=none \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6458 key_file=$DATA_FILES_PATH/server5.key" \
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6459 1 \
6460 -S "skip write certificate request" \
6461 -C "skip parse certificate request" \
6462 -c "got a certificate request" \
6463 -c "= write certificate$" \
6464 -C "skip write certificate$" \
6465 -S "x509_verify_cert() returned" \
Ronald Cron19385882022-06-15 16:26:13 +0200[diff] [blame]6466 -s "peer has no certificate" \
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6467 -s "! mbedtls_ssl_handshake returned" \
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6468 -s "No client certification received from the client, but required by the authentication mode"
6469
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6470run_test "Authentication: client badcert, server required" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6471 "$P_SRV debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6472 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6473 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6474 1 \
6475 -S "skip write certificate request" \
6476 -C "skip parse certificate request" \
6477 -c "got a certificate request" \
6478 -C "skip write certificate" \
6479 -C "skip write certificate verify" \
6480 -S "skip parse certificate verify" \
6481 -s "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6482 -s "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6483 -s "! mbedtls_ssl_handshake returned" \
Gilles Peskine1cc8e342017-05-03 16:28:34 +0200[diff] [blame]6484 -s "send alert level=2 message=48" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6485 -s "X509 - Certificate verification failed"
Gilles Peskine1cc8e342017-05-03 16:28:34 +0200[diff] [blame]6486# We don't check that the client receives the alert because it might
6487# detect that its write end of the connection is closed and abort
6488# before reading the alert message.
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6489
Gilles Peskinee1cc60e2022-01-07 23:10:56 +0100[diff] [blame]6490run_test "Authentication: client cert self-signed and trusted, server required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6491 "$P_SRV debug_level=3 auth_mode=required ca_file=$DATA_FILES_PATH/server5-selfsigned.crt" \
6492 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-selfsigned.crt \
6493 key_file=$DATA_FILES_PATH/server5.key" \
Gilles Peskinee1cc60e2022-01-07 23:10:56 +0100[diff] [blame]6494 0 \
6495 -S "skip write certificate request" \
6496 -C "skip parse certificate request" \
6497 -c "got a certificate request" \
6498 -C "skip write certificate" \
6499 -C "skip write certificate verify" \
6500 -S "skip parse certificate verify" \
6501 -S "x509_verify_cert() returned" \
6502 -S "! The certificate is not correctly signed" \
6503 -S "X509 - Certificate verification failed"
6504
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6505run_test "Authentication: client cert not trusted, server required" \
6506 "$P_SRV debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6507 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-selfsigned.crt \
6508 key_file=$DATA_FILES_PATH/server5.key" \
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6509 1 \
6510 -S "skip write certificate request" \
6511 -C "skip parse certificate request" \
6512 -c "got a certificate request" \
6513 -C "skip write certificate" \
6514 -C "skip write certificate verify" \
6515 -S "skip parse certificate verify" \
6516 -s "x509_verify_cert() returned" \
6517 -s "! The certificate is not correctly signed by the trusted CA" \
6518 -s "! mbedtls_ssl_handshake returned" \
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6519 -s "X509 - Certificate verification failed"
6520
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6521run_test "Authentication: client badcert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6522 "$P_SRV debug_level=3 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6523 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6524 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6525 0 \
6526 -S "skip write certificate request" \
6527 -C "skip parse certificate request" \
6528 -c "got a certificate request" \
6529 -C "skip write certificate" \
6530 -C "skip write certificate verify" \
6531 -S "skip parse certificate verify" \
6532 -s "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]6533 -s "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6534 -S "! mbedtls_ssl_handshake returned" \
6535 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6536 -S "X509 - Certificate verification failed"
6537
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6538run_test "Authentication: client badcert, server none" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6539 "$P_SRV debug_level=3 auth_mode=none" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6540 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6541 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6542 0 \
6543 -s "skip write certificate request" \
6544 -C "skip parse certificate request" \
6545 -c "got no certificate request" \
6546 -c "skip write certificate" \
6547 -c "skip write certificate verify" \
6548 -s "skip parse certificate verify" \
6549 -S "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]6550 -S "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6551 -S "! mbedtls_ssl_handshake returned" \
6552 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6553 -S "X509 - Certificate verification failed"
6554
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6555run_test "Authentication: client no cert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6556 "$P_SRV debug_level=3 auth_mode=optional" \
6557 "$P_CLI debug_level=3 crt_file=none key_file=none" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6558 0 \
6559 -S "skip write certificate request" \
6560 -C "skip parse certificate request" \
6561 -c "got a certificate request" \
6562 -C "skip write certificate$" \
6563 -C "got no certificate to send" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6564 -c "skip write certificate verify" \
6565 -s "skip parse certificate verify" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]6566 -s "! Certificate was missing" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6567 -S "! mbedtls_ssl_handshake returned" \
6568 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6569 -S "X509 - Certificate verification failed"
6570
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]6571requires_openssl_tls1_3_with_compatible_ephemeral
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6572run_test "Authentication: openssl client no cert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6573 "$P_SRV debug_level=3 auth_mode=optional" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]6574 "$O_NEXT_CLI_NO_CERT -no_middlebox" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6575 0 \
6576 -S "skip write certificate request" \
6577 -s "skip parse certificate verify" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]6578 -s "! Certificate was missing" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6579 -S "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6580 -S "X509 - Certificate verification failed"
6581
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]6582requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6583run_test "Authentication: client no cert, openssl server optional" \
Ronald Croncbd7bfd2022-03-31 18:19:56 +0200[diff] [blame]6584 "$O_SRV -verify 10 -tls1_2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6585 "$P_CLI debug_level=3 crt_file=none key_file=none" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6586 0 \
6587 -C "skip parse certificate request" \
6588 -c "got a certificate request" \
6589 -C "skip write certificate$" \
6590 -c "skip write certificate verify" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6591 -C "! mbedtls_ssl_handshake returned"
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6592
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]6593requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6594run_test "Authentication: client no cert, openssl server required" \
Ronald Croncbd7bfd2022-03-31 18:19:56 +0200[diff] [blame]6595 "$O_SRV -Verify 10 -tls1_2" \
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6596 "$P_CLI debug_level=3 crt_file=none key_file=none" \
6597 1 \
6598 -C "skip parse certificate request" \
6599 -c "got a certificate request" \
6600 -C "skip write certificate$" \
6601 -c "skip write certificate verify" \
6602 -c "! mbedtls_ssl_handshake returned"
6603
Yuto Takano02485822021-07-02 13:05:15 +0100[diff] [blame]6604# This script assumes that MBEDTLS_X509_MAX_INTERMEDIATE_CA has its default
6605# value, defined here as MAX_IM_CA. Some test cases will be skipped if the
6606# library is configured with a different value.
Hanno Beckera6bca9f2017-07-26 13:35:11 +0100[diff] [blame]6607
Simon Butcherbcfa6f42017-07-28 15:59:35 +0100[diff] [blame]6608MAX_IM_CA='8'
Hanno Beckera6bca9f2017-07-26 13:35:11 +0100[diff] [blame]6609
Yuto Takano02485822021-07-02 13:05:15 +0100[diff] [blame]6610# The tests for the max_int tests can pass with any number higher than MAX_IM_CA
6611# because only a chain of MAX_IM_CA length is tested. Equally, the max_int+1
6612# tests can pass with any number less than MAX_IM_CA. However, stricter preconditions
6613# are in place so that the semantics are consistent with the test description.
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6614requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6615requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6616run_test "Authentication: server max_int chain, client default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6617 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c09.pem \
6618 key_file=$DATA_FILES_PATH/dir-maxpath/09.key" \
6619 "$P_CLI server_name=CA09 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6620 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6621 -C "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6622
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6623requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6624requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6625run_test "Authentication: server max_int+1 chain, client default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6626 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6627 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
6628 "$P_CLI server_name=CA10 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6629 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6630 -c "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6631
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6632requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6633requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6634run_test "Authentication: server max_int+1 chain, client optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6635 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6636 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Manuel Pégourié-Gonnarde1cc9262024-08-14 09:47:38 +0200[diff] [blame]6637 "$P_CLI server_name=CA10 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6638 auth_mode=optional" \
6639 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6640 -c "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6641
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6642requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6643requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6644run_test "Authentication: server max_int+1 chain, client none" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6645 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6646 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
6647 "$P_CLI force_version=tls12 server_name=CA10 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6648 auth_mode=none" \
6649 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6650 -C "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6651
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6652requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6653requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6654run_test "Authentication: client max_int+1 chain, server default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6655 "$P_SRV ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt" \
6656 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6657 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6658 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6659 -S "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6660
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6661requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6662requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6663run_test "Authentication: client max_int+1 chain, server optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6664 "$P_SRV ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=optional" \
6665 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6666 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6667 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6668 -s "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6669
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6670requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6671requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6672run_test "Authentication: client max_int+1 chain, server required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6673 "$P_SRV ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=required" \
6674 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6675 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6676 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6677 -s "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6678
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6679requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6680requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6681run_test "Authentication: client max_int chain, server required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6682 "$P_SRV ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=required" \
6683 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c09.pem \
6684 key_file=$DATA_FILES_PATH/dir-maxpath/09.key" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6685 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6686 -S "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6687
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6688# Tests for CA list in CertificateRequest messages
6689
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6690requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6691run_test "Authentication: send CA list in CertificateRequest (default)" \
6692 "$P_SRV debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6693 "$P_CLI force_version=tls12 crt_file=$DATA_FILES_PATH/server6.crt \
6694 key_file=$DATA_FILES_PATH/server6.key" \
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6695 0 \
6696 -s "requested DN"
6697
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6698requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6699run_test "Authentication: do not send CA list in CertificateRequest" \
6700 "$P_SRV debug_level=3 auth_mode=required cert_req_ca_list=0" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6701 "$P_CLI force_version=tls12 crt_file=$DATA_FILES_PATH/server6.crt \
6702 key_file=$DATA_FILES_PATH/server6.key" \
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6703 0 \
6704 -S "requested DN"
6705
6706run_test "Authentication: send CA list in CertificateRequest, client self signed" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]6707 "$P_SRV force_version=tls12 debug_level=3 auth_mode=required cert_req_ca_list=0" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6708 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-selfsigned.crt \
6709 key_file=$DATA_FILES_PATH/server5.key" \
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6710 1 \
6711 -S "requested DN" \
6712 -s "x509_verify_cert() returned" \
6713 -s "! The certificate is not correctly signed by the trusted CA" \
6714 -s "! mbedtls_ssl_handshake returned" \
6715 -c "! mbedtls_ssl_handshake returned" \
6716 -s "X509 - Certificate verification failed"
6717
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6718requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6719run_test "Authentication: send alt conf DN hints in CertificateRequest" \
6720 "$P_SRV debug_level=3 auth_mode=optional cert_req_ca_list=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6721 crt_file2=$DATA_FILES_PATH/server1.crt \
6722 key_file2=$DATA_FILES_PATH/server1.key" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]6723 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6724 crt_file=$DATA_FILES_PATH/server6.crt \
6725 key_file=$DATA_FILES_PATH/server6.key" \
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6726 0 \
6727 -c "DN hint: C=NL, O=PolarSSL, CN=PolarSSL Server 1"
6728
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6729requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6730run_test "Authentication: send alt conf DN hints in CertificateRequest (2)" \
6731 "$P_SRV debug_level=3 auth_mode=optional cert_req_ca_list=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6732 crt_file2=$DATA_FILES_PATH/server2.crt \
6733 key_file2=$DATA_FILES_PATH/server2.key" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]6734 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6735 crt_file=$DATA_FILES_PATH/server6.crt \
6736 key_file=$DATA_FILES_PATH/server6.key" \
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6737 0 \
6738 -c "DN hint: C=NL, O=PolarSSL, CN=localhost"
6739
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6740requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6741run_test "Authentication: send alt hs DN hints in CertificateRequest" \
6742 "$P_SRV debug_level=3 auth_mode=optional cert_req_ca_list=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6743 crt_file2=$DATA_FILES_PATH/server1.crt \
6744 key_file2=$DATA_FILES_PATH/server1.key" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]6745 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6746 crt_file=$DATA_FILES_PATH/server6.crt \
6747 key_file=$DATA_FILES_PATH/server6.key" \
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6748 0 \
6749 -c "DN hint: C=NL, O=PolarSSL, CN=PolarSSL Server 1"
6750
Jarno Lamsaf7a7f9e2019-04-01 15:11:54 +0300[diff] [blame]6751# Tests for auth_mode, using CA callback, these are duplicated from the authentication tests
6752# When updating these tests, modify the matching authentication tests accordingly
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6753
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6754run_test "Authentication, CA callback: server badcert, client required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6755 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6756 key_file=$DATA_FILES_PATH/server5.key" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6757 "$P_CLI ca_callback=1 debug_level=3 auth_mode=required" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6758 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6759 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6760 -c "x509_verify_cert() returned" \
6761 -c "! The certificate is not correctly signed by the trusted CA" \
6762 -c "! mbedtls_ssl_handshake returned" \
6763 -c "X509 - Certificate verification failed"
6764
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6765run_test "Authentication, CA callback: server badcert, client optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6766 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6767 key_file=$DATA_FILES_PATH/server5.key" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6768 "$P_CLI ca_callback=1 debug_level=3 auth_mode=optional" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6769 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6770 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6771 -c "x509_verify_cert() returned" \
6772 -c "! The certificate is not correctly signed by the trusted CA" \
6773 -C "! mbedtls_ssl_handshake returned" \
6774 -C "X509 - Certificate verification failed"
6775
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6776run_test "Authentication, CA callback: server badcert, client none" \
6777 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6778 key_file=$DATA_FILES_PATH/server5.key" \
6779 "$P_CLI ca_callback=1 debug_level=3 auth_mode=none" \
6780 0 \
6781 -C "use CA callback for X.509 CRT verification" \
6782 -C "x509_verify_cert() returned" \
6783 -C "! The certificate is not correctly signed by the trusted CA" \
6784 -C "! mbedtls_ssl_handshake returned" \
6785 -C "X509 - Certificate verification failed"
6786
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6787# The purpose of the next two tests is to test the client's behaviour when receiving a server
6788# certificate with an unsupported elliptic curve. This should usually not happen because
6789# the client informs the server about the supported curves - it does, though, in the
6790# corner case of a static ECDH suite, because the server doesn't check the curve on that
6791# occasion (to be fixed). If that bug's fixed, the test needs to be altered to use a
6792# different means to have the server ignoring the client's supported curve list.
6793
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6794run_test "Authentication, CA callback: server ECDH p256v1, client required, p256v1 unsupported" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6795 "$P_SRV debug_level=1 key_file=$DATA_FILES_PATH/server5.key \
6796 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]6797 "$P_CLI force_version=tls12 ca_callback=1 debug_level=3 auth_mode=required groups=secp521r1" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6798 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6799 -c "use CA callback for X.509 CRT verification" \
6800 -c "bad certificate (EC key curve)" \
6801 -c "! Certificate verification flags" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6802 -C "bad server certificate (ECDH curve)" # Expect failure at earlier verification stage
6803
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6804run_test "Authentication, CA callback: server ECDH p256v1, client optional, p256v1 unsupported" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6805 "$P_SRV debug_level=1 key_file=$DATA_FILES_PATH/server5.key \
6806 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]6807 "$P_CLI force_version=tls12 ca_callback=1 debug_level=3 auth_mode=optional groups=secp521r1" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6808 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6809 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6810 -c "bad certificate (EC key curve)"\
6811 -c "! Certificate verification flags"\
6812 -c "bad server certificate (ECDH curve)" # Expect failure only at ECDH params check
6813
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6814requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron84442a32024-04-03 08:57:09 +0200[diff] [blame]6815run_test "Authentication, CA callback: client SHA384, server required" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6816 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6817 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server6.crt \
6818 key_file=$DATA_FILES_PATH/server6.key \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6819 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
6820 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6821 -s "use CA callback for X.509 CRT verification" \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]6822 -c "Supported Signature Algorithm found: 04 " \
6823 -c "Supported Signature Algorithm found: 05 "
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6824
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6825requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron84442a32024-04-03 08:57:09 +0200[diff] [blame]6826run_test "Authentication, CA callback: client SHA256, server required" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6827 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6828 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server6.crt \
6829 key_file=$DATA_FILES_PATH/server6.key \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6830 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
6831 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6832 -s "use CA callback for X.509 CRT verification" \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]6833 -c "Supported Signature Algorithm found: 04 " \
6834 -c "Supported Signature Algorithm found: 05 "
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6835
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6836run_test "Authentication, CA callback: client badcert, server required" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6837 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6838 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6839 key_file=$DATA_FILES_PATH/server5.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6840 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6841 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6842 -S "skip write certificate request" \
6843 -C "skip parse certificate request" \
6844 -c "got a certificate request" \
6845 -C "skip write certificate" \
6846 -C "skip write certificate verify" \
6847 -S "skip parse certificate verify" \
6848 -s "x509_verify_cert() returned" \
6849 -s "! The certificate is not correctly signed by the trusted CA" \
6850 -s "! mbedtls_ssl_handshake returned" \
6851 -s "send alert level=2 message=48" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6852 -s "X509 - Certificate verification failed"
6853# We don't check that the client receives the alert because it might
6854# detect that its write end of the connection is closed and abort
6855# before reading the alert message.
6856
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6857run_test "Authentication, CA callback: client cert not trusted, server required" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6858 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6859 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-selfsigned.crt \
6860 key_file=$DATA_FILES_PATH/server5.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6861 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6862 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6863 -S "skip write certificate request" \
6864 -C "skip parse certificate request" \
6865 -c "got a certificate request" \
6866 -C "skip write certificate" \
6867 -C "skip write certificate verify" \
6868 -S "skip parse certificate verify" \
6869 -s "x509_verify_cert() returned" \
6870 -s "! The certificate is not correctly signed by the trusted CA" \
6871 -s "! mbedtls_ssl_handshake returned" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6872 -s "X509 - Certificate verification failed"
6873
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6874run_test "Authentication, CA callback: client badcert, server optional" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6875 "$P_SRV ca_callback=1 debug_level=3 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6876 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6877 key_file=$DATA_FILES_PATH/server5.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6878 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6879 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6880 -S "skip write certificate request" \
6881 -C "skip parse certificate request" \
6882 -c "got a certificate request" \
6883 -C "skip write certificate" \
6884 -C "skip write certificate verify" \
6885 -S "skip parse certificate verify" \
6886 -s "x509_verify_cert() returned" \
6887 -s "! The certificate is not correctly signed by the trusted CA" \
6888 -S "! mbedtls_ssl_handshake returned" \
6889 -C "! mbedtls_ssl_handshake returned" \
6890 -S "X509 - Certificate verification failed"
6891
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6892requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6893requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6894run_test "Authentication, CA callback: server max_int chain, client default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6895 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c09.pem \
6896 key_file=$DATA_FILES_PATH/dir-maxpath/09.key" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6897 "$P_CLI ca_callback=1 debug_level=3 server_name=CA09 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6898 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6899 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6900 -C "X509 - A fatal error occurred"
6901
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6902requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6903requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6904run_test "Authentication, CA callback: server max_int+1 chain, client default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6905 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6906 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6907 "$P_CLI debug_level=3 ca_callback=1 server_name=CA10 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6908 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6909 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6910 -c "X509 - A fatal error occurred"
6911
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6912requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6913requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6914run_test "Authentication, CA callback: server max_int+1 chain, client optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6915 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6916 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6917 "$P_CLI ca_callback=1 server_name=CA10 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6918 debug_level=3 auth_mode=optional" \
6919 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6920 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6921 -c "X509 - A fatal error occurred"
6922
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6923requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6924requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6925run_test "Authentication, CA callback: client max_int+1 chain, server optional" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6926 "$P_SRV ca_callback=1 debug_level=3 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6927 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6928 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6929 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6930 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6931 -s "X509 - A fatal error occurred"
6932
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6933requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6934requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6935run_test "Authentication, CA callback: client max_int+1 chain, server required" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6936 "$P_SRV ca_callback=1 debug_level=3 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6937 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6938 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6939 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6940 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6941 -s "X509 - A fatal error occurred"
6942
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6943requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6944requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6945run_test "Authentication, CA callback: client max_int chain, server required" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6946 "$P_SRV ca_callback=1 debug_level=3 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6947 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c09.pem \
6948 key_file=$DATA_FILES_PATH/dir-maxpath/09.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6949 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6950 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6951 -S "X509 - A fatal error occurred"
6952
Shaun Case8b0ecbc2021-12-20 21:14:10 -0800[diff] [blame]6953# Tests for certificate selection based on SHA version
Manuel Pégourié-Gonnarddf331a52015-01-08 16:43:07 +0100[diff] [blame]6954
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]6955requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnarddf331a52015-01-08 16:43:07 +0100[diff] [blame]6956run_test "Certificate hash: client TLS 1.2 -> SHA-2" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6957 "$P_SRV force_version=tls12 crt_file=$DATA_FILES_PATH/server5.crt \
6958 key_file=$DATA_FILES_PATH/server5.key \
6959 crt_file2=$DATA_FILES_PATH/server5-sha1.crt \
6960 key_file2=$DATA_FILES_PATH/server5.key" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]6961 "$P_CLI" \
Manuel Pégourié-Gonnarddf331a52015-01-08 16:43:07 +0100[diff] [blame]6962 0 \
6963 -c "signed using.*ECDSA with SHA256" \
6964 -C "signed using.*ECDSA with SHA1"
6965
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]6966# tests for SNI
6967
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]6968requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6969run_test "SNI: no SNI callback" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6970 "$P_SRV debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6971 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6972 "$P_CLI server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6973 0 \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6974 -c "issuer name *: C=NL, O=PolarSSL, CN=Polarssl Test EC CA" \
6975 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]6976
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]6977requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6978run_test "SNI: matching cert 1" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6979 "$P_SRV debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6980 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
6981 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6982 "$P_CLI server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6983 0 \
6984 -s "parse ServerName extension" \
6985 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
6986 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]6987
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]6988requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6989run_test "SNI: matching cert 2" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6990 "$P_SRV debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6991 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
6992 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6993 "$P_CLI server_name=polarssl.example" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6994 0 \
6995 -s "parse ServerName extension" \
6996 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
6997 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]6998
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]6999requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7000run_test "SNI: no matching cert" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]7001 "$P_SRV debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7002 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7003 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]7004 "$P_CLI server_name=nonesuch.example" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7005 1 \
7006 -s "parse ServerName extension" \
7007 -s "ssl_sni_wrapper() returned" \
7008 -s "mbedtls_ssl_handshake returned" \
7009 -c "mbedtls_ssl_handshake returned" \
7010 -c "SSL - A fatal alert message was received from our peer"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]7011
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]7012run_test "SNI: client auth no override: optional" \
7013 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7014 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7015 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-" \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]7016 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7017 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]7018 -S "skip write certificate request" \
7019 -C "skip parse certificate request" \
7020 -c "got a certificate request" \
7021 -C "skip write certificate" \
7022 -C "skip write certificate verify" \
7023 -S "skip parse certificate verify"
7024
7025run_test "SNI: client auth override: none -> optional" \
7026 "$P_SRV debug_level=3 auth_mode=none \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7027 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7028 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,optional" \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]7029 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7030 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]7031 -S "skip write certificate request" \
7032 -C "skip parse certificate request" \
7033 -c "got a certificate request" \
7034 -C "skip write certificate" \
7035 -C "skip write certificate verify" \
7036 -S "skip parse certificate verify"
7037
7038run_test "SNI: client auth override: optional -> none" \
7039 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7040 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7041 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,none" \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]7042 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7043 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]7044 -s "skip write certificate request" \
7045 -C "skip parse certificate request" \
7046 -c "got no certificate request" \
XiaokangQian23c5be62022-06-07 02:04:34 +0000[diff] [blame]7047 -c "skip write certificate"
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]7048
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7049run_test "SNI: CA no override" \
7050 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7051 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7052 ca_file=$DATA_FILES_PATH/test-ca.crt \
7053 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,required" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7054 "$P_CLI debug_level=3 server_name=localhost \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7055 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7056 1 \
7057 -S "skip write certificate request" \
7058 -C "skip parse certificate request" \
7059 -c "got a certificate request" \
7060 -C "skip write certificate" \
7061 -C "skip write certificate verify" \
7062 -S "skip parse certificate verify" \
7063 -s "x509_verify_cert() returned" \
7064 -s "! The certificate is not correctly signed by the trusted CA" \
7065 -S "The certificate has been revoked (is on a CRL)"
7066
7067run_test "SNI: CA override" \
7068 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7069 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7070 ca_file=$DATA_FILES_PATH/test-ca.crt \
7071 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,$DATA_FILES_PATH/test-ca2.crt,-,required" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7072 "$P_CLI debug_level=3 server_name=localhost \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7073 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7074 0 \
7075 -S "skip write certificate request" \
7076 -C "skip parse certificate request" \
7077 -c "got a certificate request" \
7078 -C "skip write certificate" \
7079 -C "skip write certificate verify" \
7080 -S "skip parse certificate verify" \
7081 -S "x509_verify_cert() returned" \
7082 -S "! The certificate is not correctly signed by the trusted CA" \
7083 -S "The certificate has been revoked (is on a CRL)"
7084
7085run_test "SNI: CA override with CRL" \
7086 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7087 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7088 ca_file=$DATA_FILES_PATH/test-ca.crt \
7089 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,$DATA_FILES_PATH/test-ca2.crt,$DATA_FILES_PATH/crl-ec-sha256.pem,required" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7090 "$P_CLI debug_level=3 server_name=localhost \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7091 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7092 1 \
7093 -S "skip write certificate request" \
7094 -C "skip parse certificate request" \
7095 -c "got a certificate request" \
7096 -C "skip write certificate" \
7097 -C "skip write certificate verify" \
7098 -S "skip parse certificate verify" \
7099 -s "x509_verify_cert() returned" \
7100 -S "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard4192bba2024-08-05 12:44:57 +0200[diff] [blame]7101 -s "send alert level=2 message=44" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7102 -s "The certificate has been revoked (is on a CRL)"
Manuel Pégourié-Gonnard4192bba2024-08-05 12:44:57 +0200[diff] [blame]7103 # MBEDTLS_X509_BADCERT_REVOKED -> MBEDTLS_SSL_ALERT_MSG_CERT_REVOKED
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7104
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7105# Tests for SNI and DTLS
7106
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]7107requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7108requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7109run_test "SNI: DTLS, no SNI callback" \
7110 "$P_SRV debug_level=3 dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7111 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7112 "$P_CLI server_name=localhost dtls=1" \
7113 0 \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7114 -c "issuer name *: C=NL, O=PolarSSL, CN=Polarssl Test EC CA" \
7115 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
7116
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]7117requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7118requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]7119run_test "SNI: DTLS, matching cert 1" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7120 "$P_SRV debug_level=3 dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7121 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7122 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7123 "$P_CLI server_name=localhost dtls=1" \
7124 0 \
7125 -s "parse ServerName extension" \
7126 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
7127 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
7128
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]7129requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7130requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7131run_test "SNI: DTLS, matching cert 2" \
7132 "$P_SRV debug_level=3 dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7133 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7134 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7135 "$P_CLI server_name=polarssl.example dtls=1" \
7136 0 \
7137 -s "parse ServerName extension" \
7138 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
7139 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
7140
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7141requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7142run_test "SNI: DTLS, no matching cert" \
7143 "$P_SRV debug_level=3 dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7144 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7145 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7146 "$P_CLI server_name=nonesuch.example dtls=1" \
7147 1 \
7148 -s "parse ServerName extension" \
7149 -s "ssl_sni_wrapper() returned" \
7150 -s "mbedtls_ssl_handshake returned" \
7151 -c "mbedtls_ssl_handshake returned" \
7152 -c "SSL - A fatal alert message was received from our peer"
7153
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7154requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7155run_test "SNI: DTLS, client auth no override: optional" \
7156 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7157 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7158 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7159 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
7160 0 \
7161 -S "skip write certificate request" \
7162 -C "skip parse certificate request" \
7163 -c "got a certificate request" \
7164 -C "skip write certificate" \
7165 -C "skip write certificate verify" \
7166 -S "skip parse certificate verify"
7167
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7168requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7169run_test "SNI: DTLS, client auth override: none -> optional" \
7170 "$P_SRV debug_level=3 auth_mode=none dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7171 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7172 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,optional" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7173 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
7174 0 \
7175 -S "skip write certificate request" \
7176 -C "skip parse certificate request" \
7177 -c "got a certificate request" \
7178 -C "skip write certificate" \
7179 -C "skip write certificate verify" \
7180 -S "skip parse certificate verify"
7181
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7182requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7183run_test "SNI: DTLS, client auth override: optional -> none" \
7184 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7185 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7186 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,none" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7187 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
7188 0 \
7189 -s "skip write certificate request" \
7190 -C "skip parse certificate request" \
7191 -c "got no certificate request" \
7192 -c "skip write certificate" \
7193 -c "skip write certificate verify" \
7194 -s "skip parse certificate verify"
7195
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7196requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7197run_test "SNI: DTLS, CA no override" \
7198 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7199 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7200 ca_file=$DATA_FILES_PATH/test-ca.crt \
7201 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,required" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7202 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7203 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7204 1 \
7205 -S "skip write certificate request" \
7206 -C "skip parse certificate request" \
7207 -c "got a certificate request" \
7208 -C "skip write certificate" \
7209 -C "skip write certificate verify" \
7210 -S "skip parse certificate verify" \
7211 -s "x509_verify_cert() returned" \
7212 -s "! The certificate is not correctly signed by the trusted CA" \
7213 -S "The certificate has been revoked (is on a CRL)"
7214
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7215requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]7216run_test "SNI: DTLS, CA override" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7217 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7218 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7219 ca_file=$DATA_FILES_PATH/test-ca.crt \
7220 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,$DATA_FILES_PATH/test-ca2.crt,-,required" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7221 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7222 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7223 0 \
7224 -S "skip write certificate request" \
7225 -C "skip parse certificate request" \
7226 -c "got a certificate request" \
7227 -C "skip write certificate" \
7228 -C "skip write certificate verify" \
7229 -S "skip parse certificate verify" \
7230 -S "x509_verify_cert() returned" \
7231 -S "! The certificate is not correctly signed by the trusted CA" \
7232 -S "The certificate has been revoked (is on a CRL)"
7233
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7234requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]7235run_test "SNI: DTLS, CA override with CRL" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7236 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7237 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key dtls=1 \
7238 ca_file=$DATA_FILES_PATH/test-ca.crt \
7239 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,$DATA_FILES_PATH/test-ca2.crt,$DATA_FILES_PATH/crl-ec-sha256.pem,required" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7240 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7241 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7242 1 \
7243 -S "skip write certificate request" \
7244 -C "skip parse certificate request" \
7245 -c "got a certificate request" \
7246 -C "skip write certificate" \
7247 -C "skip write certificate verify" \
7248 -S "skip parse certificate verify" \
7249 -s "x509_verify_cert() returned" \
7250 -S "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard4192bba2024-08-05 12:44:57 +0200[diff] [blame]7251 -s "send alert level=2 message=44" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7252 -s "The certificate has been revoked (is on a CRL)"
Manuel Pégourié-Gonnard4192bba2024-08-05 12:44:57 +0200[diff] [blame]7253 # MBEDTLS_X509_BADCERT_REVOKED -> MBEDTLS_SSL_ALERT_MSG_CERT_REVOKED
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7254
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7255# Tests for non-blocking I/O: exercise a variety of handshake flows
7256
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7257run_test "Non-blocking I/O: basic handshake" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7258 "$P_SRV nbio=2 tickets=0 auth_mode=none" \
7259 "$P_CLI nbio=2 tickets=0" \
7260 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7261 -S "mbedtls_ssl_handshake returned" \
7262 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7263 -c "Read from server: .* bytes read"
7264
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7265run_test "Non-blocking I/O: client auth" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7266 "$P_SRV nbio=2 tickets=0 auth_mode=required" \
7267 "$P_CLI nbio=2 tickets=0" \
7268 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7269 -S "mbedtls_ssl_handshake returned" \
7270 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7271 -c "Read from server: .* bytes read"
7272
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7273requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7274run_test "Non-blocking I/O: ticket" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7275 "$P_SRV nbio=2 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7276 "$P_CLI nbio=2 tickets=1 new_session_tickets=1" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7277 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7278 -S "mbedtls_ssl_handshake returned" \
7279 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7280 -c "Read from server: .* bytes read"
7281
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7282requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7283run_test "Non-blocking I/O: ticket + client auth" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7284 "$P_SRV nbio=2 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7285 "$P_CLI nbio=2 tickets=1 new_session_tickets=1" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7286 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7287 -S "mbedtls_ssl_handshake returned" \
7288 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7289 -c "Read from server: .* bytes read"
7290
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7291requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7292requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7293run_test "Non-blocking I/O: TLS 1.2 + ticket + client auth + resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7294 "$P_SRV nbio=2 tickets=1 auth_mode=required" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7295 "$P_CLI force_version=tls12 nbio=2 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7296 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7297 -S "mbedtls_ssl_handshake returned" \
7298 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7299 -c "Read from server: .* bytes read"
7300
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7301requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7302requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
7303requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7304requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7305run_test "Non-blocking I/O: TLS 1.3 + ticket + client auth + resume" \
7306 "$P_SRV nbio=2 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7307 "$P_CLI nbio=2 tickets=1 new_session_tickets=1 reconnect=1" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7308 0 \
7309 -S "mbedtls_ssl_handshake returned" \
7310 -C "mbedtls_ssl_handshake returned" \
7311 -c "Read from server: .* bytes read"
7312
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7313requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7314requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7315run_test "Non-blocking I/O: TLS 1.2 + ticket + resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7316 "$P_SRV nbio=2 tickets=1 auth_mode=none" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7317 "$P_CLI force_version=tls12 nbio=2 tickets=1 reconnect=1" \
7318 0 \
7319 -S "mbedtls_ssl_handshake returned" \
7320 -C "mbedtls_ssl_handshake returned" \
7321 -c "Read from server: .* bytes read"
7322
7323requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7324requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
7325requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7326requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7327run_test "Non-blocking I/O: TLS 1.3 + ticket + resume" \
7328 "$P_SRV nbio=2 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7329 "$P_CLI nbio=2 tickets=1 new_session_tickets=1 reconnect=1" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7330 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7331 -S "mbedtls_ssl_handshake returned" \
7332 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7333 -c "Read from server: .* bytes read"
7334
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7335requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7336run_test "Non-blocking I/O: session-id resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7337 "$P_SRV nbio=2 tickets=0 auth_mode=none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]7338 "$P_CLI force_version=tls12 nbio=2 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7339 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7340 -S "mbedtls_ssl_handshake returned" \
7341 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7342 -c "Read from server: .* bytes read"
7343
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7344# Tests for event-driven I/O: exercise a variety of handshake flows
7345
7346run_test "Event-driven I/O: basic handshake" \
7347 "$P_SRV event=1 tickets=0 auth_mode=none" \
7348 "$P_CLI event=1 tickets=0" \
7349 0 \
7350 -S "mbedtls_ssl_handshake returned" \
7351 -C "mbedtls_ssl_handshake returned" \
7352 -c "Read from server: .* bytes read"
7353
7354run_test "Event-driven I/O: client auth" \
7355 "$P_SRV event=1 tickets=0 auth_mode=required" \
7356 "$P_CLI event=1 tickets=0" \
7357 0 \
7358 -S "mbedtls_ssl_handshake returned" \
7359 -C "mbedtls_ssl_handshake returned" \
7360 -c "Read from server: .* bytes read"
7361
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7362requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7363run_test "Event-driven I/O: ticket" \
7364 "$P_SRV event=1 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7365 "$P_CLI event=1 tickets=1 new_session_tickets=1" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7366 0 \
7367 -S "mbedtls_ssl_handshake returned" \
7368 -C "mbedtls_ssl_handshake returned" \
7369 -c "Read from server: .* bytes read"
7370
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7371requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7372run_test "Event-driven I/O: ticket + client auth" \
7373 "$P_SRV event=1 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7374 "$P_CLI event=1 tickets=1 new_session_tickets=1" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7375 0 \
7376 -S "mbedtls_ssl_handshake returned" \
7377 -C "mbedtls_ssl_handshake returned" \
7378 -c "Read from server: .* bytes read"
7379
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7380requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7381requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7382run_test "Event-driven I/O: TLS 1.2 + ticket + client auth + resume" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7383 "$P_SRV event=1 tickets=1 auth_mode=required" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7384 "$P_CLI force_version=tls12 event=1 tickets=1 reconnect=1" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7385 0 \
7386 -S "mbedtls_ssl_handshake returned" \
7387 -C "mbedtls_ssl_handshake returned" \
7388 -c "Read from server: .* bytes read"
7389
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7390requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7391requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
7392requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7393requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7394run_test "Event-driven I/O: TLS 1.3 + ticket + client auth + resume" \
7395 "$P_SRV event=1 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7396 "$P_CLI event=1 tickets=1 new_session_tickets=1 reconnect=1" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7397 0 \
7398 -S "mbedtls_ssl_handshake returned" \
7399 -C "mbedtls_ssl_handshake returned" \
7400 -c "Read from server: .* bytes read"
7401
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7402requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7403requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7404run_test "Event-driven I/O: TLS 1.2 + ticket + resume" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7405 "$P_SRV event=1 tickets=1 auth_mode=none" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7406 "$P_CLI force_version=tls12 event=1 tickets=1 reconnect=1" \
7407 0 \
7408 -S "mbedtls_ssl_handshake returned" \
7409 -C "mbedtls_ssl_handshake returned" \
7410 -c "Read from server: .* bytes read"
7411
7412requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7413requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
7414requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7415requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7416run_test "Event-driven I/O: TLS 1.3 + ticket + resume" \
7417 "$P_SRV event=1 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7418 "$P_CLI event=1 tickets=1 new_session_tickets=1 reconnect=1" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7419 0 \
7420 -S "mbedtls_ssl_handshake returned" \
7421 -C "mbedtls_ssl_handshake returned" \
7422 -c "Read from server: .* bytes read"
7423
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7424requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7425run_test "Event-driven I/O: session-id resume" \
7426 "$P_SRV event=1 tickets=0 auth_mode=none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]7427 "$P_CLI force_version=tls12 event=1 tickets=0 reconnect=1" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7428 0 \
7429 -S "mbedtls_ssl_handshake returned" \
7430 -C "mbedtls_ssl_handshake returned" \
7431 -c "Read from server: .* bytes read"
7432
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7433requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7434run_test "Event-driven I/O, DTLS: basic handshake" \
7435 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=none" \
7436 "$P_CLI dtls=1 event=1 tickets=0" \
7437 0 \
7438 -c "Read from server: .* bytes read"
7439
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7440requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7441run_test "Event-driven I/O, DTLS: client auth" \
7442 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=required" \
7443 "$P_CLI dtls=1 event=1 tickets=0" \
7444 0 \
7445 -c "Read from server: .* bytes read"
7446
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7447requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7448requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7449run_test "Event-driven I/O, DTLS: ticket" \
7450 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=none" \
7451 "$P_CLI dtls=1 event=1 tickets=1" \
7452 0 \
7453 -c "Read from server: .* bytes read"
7454
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7455requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7456requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7457run_test "Event-driven I/O, DTLS: ticket + client auth" \
7458 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=required" \
7459 "$P_CLI dtls=1 event=1 tickets=1" \
7460 0 \
7461 -c "Read from server: .* bytes read"
7462
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7463requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7464requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7465run_test "Event-driven I/O, DTLS: ticket + client auth + resume" \
7466 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]7467 "$P_CLI dtls=1 event=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7468 0 \
7469 -c "Read from server: .* bytes read"
7470
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7471requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7472requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7473run_test "Event-driven I/O, DTLS: ticket + resume" \
7474 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]7475 "$P_CLI dtls=1 event=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7476 0 \
7477 -c "Read from server: .* bytes read"
7478
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7479requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7480run_test "Event-driven I/O, DTLS: session-id resume" \
7481 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=none" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]7482 "$P_CLI dtls=1 event=1 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7483 0 \
7484 -c "Read from server: .* bytes read"
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]7485
7486# This test demonstrates the need for the mbedtls_ssl_check_pending function.
7487# During session resumption, the client will send its ApplicationData record
7488# within the same datagram as the Finished messages. In this situation, the
7489# server MUST NOT idle on the underlying transport after handshake completion,
7490# because the ApplicationData request has already been queued internally.
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7491requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]7492run_test "Event-driven I/O, DTLS: session-id resume, UDP packing" \
Hanno Becker8d832182018-03-15 10:14:19 +0000[diff] [blame]7493 -p "$P_PXY pack=50" \
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]7494 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=required" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]7495 "$P_CLI dtls=1 event=1 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]7496 0 \
7497 -c "Read from server: .* bytes read"
7498
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7499# Tests for version negotiation. Some information to ease the understanding
7500# of the version negotiation test titles below:
7501# . 1.2/1.3 means that only TLS 1.2/TLS 1.3 is enabled.
7502# . 1.2+1.3 means that both TLS 1.2 and TLS 1.3 are enabled.
7503# . 1.2+(1.3)/(1.2)+1.3 means that TLS 1.2/1.3 is enabled and that
7504# TLS 1.3/1.2 may be enabled or not.
7505# . max=1.2 means that both TLS 1.2 and TLS 1.3 are enabled at build time but
7506# TLS 1.3 is disabled at runtime (maximum negotiable version is TLS 1.2).
7507# . min=1.3 means that both TLS 1.2 and TLS 1.3 are enabled at build time but
7508# TLS 1.2 is disabled at runtime (minimum negotiable version is TLS 1.3).
7509
Ronald Cronfe18d8d2024-03-06 15:19:55 +0100[diff] [blame]7510# Tests for version negotiation, MbedTLS client and server
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]7511
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7512requires_config_enabled MBEDTLS_SSL_CLI_C
7513requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7514requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_3
7515requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7516run_test "Version nego m->m: cli 1.2, srv 1.2 -> 1.2" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]7517 "$P_SRV" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7518 "$P_CLI" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]7519 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7520 -S "mbedtls_ssl_handshake returned" \
7521 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]7522 -s "Protocol is TLSv1.2" \
7523 -c "Protocol is TLSv1.2"
7524
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7525requires_config_enabled MBEDTLS_SSL_CLI_C
7526requires_config_enabled MBEDTLS_SSL_SRV_C
7527requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7528requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7529requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7530run_test "Version nego m->m: cli max=1.2, srv max=1.2 -> 1.2" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7531 "$P_SRV max_version=tls12" \
7532 "$P_CLI max_version=tls12" \
7533 0 \
7534 -S "mbedtls_ssl_handshake returned" \
7535 -C "mbedtls_ssl_handshake returned" \
7536 -s "Protocol is TLSv1.2" \
7537 -c "Protocol is TLSv1.2"
7538
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7539requires_config_enabled MBEDTLS_SSL_CLI_C
7540requires_config_enabled MBEDTLS_SSL_SRV_C
7541requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7542requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7543run_test "Version nego m->m: cli 1.3, srv 1.3 -> 1.3" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7544 "$P_SRV" \
7545 "$P_CLI" \
7546 0 \
7547 -S "mbedtls_ssl_handshake returned" \
7548 -C "mbedtls_ssl_handshake returned" \
7549 -s "Protocol is TLSv1.3" \
7550 -c "Protocol is TLSv1.3"
7551
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7552requires_config_enabled MBEDTLS_SSL_CLI_C
7553requires_config_enabled MBEDTLS_SSL_SRV_C
7554requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7555requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7556requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7557run_test "Version nego m->m: cli min=1.3, srv min=1.3 -> 1.3" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7558 "$P_SRV min_version=tls13" \
7559 "$P_CLI min_version=tls13" \
7560 0 \
7561 -S "mbedtls_ssl_handshake returned" \
7562 -C "mbedtls_ssl_handshake returned" \
7563 -s "Protocol is TLSv1.3" \
7564 -c "Protocol is TLSv1.3"
7565
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7566requires_config_enabled MBEDTLS_SSL_CLI_C
7567requires_config_enabled MBEDTLS_SSL_SRV_C
7568requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7569requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7570requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7571run_test "Version nego m->m: cli 1.2+1.3, srv 1.2+1.3 -> 1.3" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7572 "$P_SRV" \
7573 "$P_CLI" \
7574 0 \
7575 -S "mbedtls_ssl_handshake returned" \
7576 -C "mbedtls_ssl_handshake returned" \
7577 -s "Protocol is TLSv1.3" \
7578 -c "Protocol is TLSv1.3"
7579
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7580requires_config_enabled MBEDTLS_SSL_CLI_C
7581requires_config_enabled MBEDTLS_SSL_SRV_C
7582requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7583requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7584requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7585run_test "Version nego m->m: cli 1.2+1.3, srv min=1.3 -> 1.3" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7586 "$P_SRV min_version=tls13" \
7587 "$P_CLI" \
7588 0 \
7589 -S "mbedtls_ssl_handshake returned" \
7590 -C "mbedtls_ssl_handshake returned" \
7591 -s "Protocol is TLSv1.3" \
7592 -c "Protocol is TLSv1.3"
7593
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7594requires_config_enabled MBEDTLS_SSL_CLI_C
7595requires_config_enabled MBEDTLS_SSL_SRV_C
7596requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7597requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7598requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7599run_test "Version nego m->m: cli 1.2+1.3, srv max=1.2 -> 1.2" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7600 "$P_SRV max_version=tls12" \
7601 "$P_CLI" \
7602 0 \
7603 -S "mbedtls_ssl_handshake returned" \
7604 -C "mbedtls_ssl_handshake returned" \
7605 -s "Protocol is TLSv1.2" \
7606 -c "Protocol is TLSv1.2"
7607
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7608requires_config_enabled MBEDTLS_SSL_CLI_C
7609requires_config_enabled MBEDTLS_SSL_SRV_C
7610requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7611requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7612requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7613run_test "Version nego m->m: cli max=1.2, srv 1.2+1.3 -> 1.2" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]7614 "$P_SRV" \
Ronald Crondcfd00c2024-03-06 15:58:50 +0100[diff] [blame]7615 "$P_CLI max_version=tls12" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]7616 0 \
7617 -S "mbedtls_ssl_handshake returned" \
7618 -C "mbedtls_ssl_handshake returned" \
7619 -s "Protocol is TLSv1.2" \
7620 -c "Protocol is TLSv1.2"
7621
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7622requires_config_enabled MBEDTLS_SSL_CLI_C
7623requires_config_enabled MBEDTLS_SSL_SRV_C
7624requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7625requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7626requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7627run_test "Version nego m->m: cli min=1.3, srv 1.2+1.3 -> 1.3" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7628 "$P_SRV" \
7629 "$P_CLI min_version=tls13" \
7630 0 \
7631 -S "mbedtls_ssl_handshake returned" \
7632 -C "mbedtls_ssl_handshake returned" \
7633 -s "Protocol is TLSv1.3" \
7634 -c "Protocol is TLSv1.3"
7635
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7636requires_config_enabled MBEDTLS_SSL_CLI_C
7637requires_config_enabled MBEDTLS_SSL_SRV_C
7638requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7639requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7640run_test "Not supported version m->m: cli max=1.2, srv min=1.3" \
Ronald Crondcfd00c2024-03-06 15:58:50 +0100[diff] [blame]7641 "$P_SRV min_version=tls13" \
7642 "$P_CLI max_version=tls12" \
7643 1 \
7644 -s "Handshake protocol not within min/max boundaries" \
7645 -S "Protocol is TLSv1.2" \
7646 -C "Protocol is TLSv1.2" \
7647 -S "Protocol is TLSv1.3" \
7648 -C "Protocol is TLSv1.3"
Ronald Cronfe18d8d2024-03-06 15:19:55 +0100[diff] [blame]7649
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7650requires_config_enabled MBEDTLS_SSL_CLI_C
7651requires_config_enabled MBEDTLS_SSL_SRV_C
7652requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7653requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7654run_test "Not supported version m->m: cli min=1.3, srv max=1.2" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7655 "$P_SRV max_version=tls12" \
7656 "$P_CLI min_version=tls13" \
7657 1 \
7658 -s "The handshake negotiation failed" \
7659 -S "Protocol is TLSv1.2" \
7660 -C "Protocol is TLSv1.2" \
7661 -S "Protocol is TLSv1.3" \
7662 -C "Protocol is TLSv1.3"
7663
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7664# Tests of version negotiation on server side against GnuTLS client
7665
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7666requires_config_enabled MBEDTLS_SSL_SRV_C
7667requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7668requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7669run_test "Server version nego G->m: cli 1.2, srv 1.2+(1.3) -> 1.2" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7670 "$P_SRV" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7671 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7672 0 \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7673 -S "mbedtls_ssl_handshake returned" \
7674 -s "Protocol is TLSv1.2"
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7675
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7676requires_config_enabled MBEDTLS_SSL_SRV_C
7677requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7678requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7679requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7680run_test "Server version nego G->m: cli 1.2, srv max=1.2 -> 1.2" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7681 "$P_SRV max_version=tls12" \
7682 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
7683 0 \
7684 -S "mbedtls_ssl_handshake returned" \
7685 -s "Protocol is TLSv1.2"
7686
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7687requires_config_enabled MBEDTLS_SSL_SRV_C
7688requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7689requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7690run_test "Server version nego G->m: cli 1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7691 "$P_SRV" \
7692 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3" \
7693 0 \
7694 -S "mbedtls_ssl_handshake returned" \
7695 -s "Protocol is TLSv1.3"
7696
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7697requires_config_enabled MBEDTLS_SSL_SRV_C
7698requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7699requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7700requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7701run_test "Server version nego G->m: cli 1.3, srv min=1.3 -> 1.3" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7702 "$P_SRV min_version=tls13" \
7703 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3" \
7704 0 \
7705 -S "mbedtls_ssl_handshake returned" \
7706 -s "Protocol is TLSv1.3"
7707
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7708requires_config_enabled MBEDTLS_SSL_SRV_C
7709requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7710requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7711run_test "Server version nego G->m: cli 1.2+1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7712 "$P_SRV" \
7713 "$G_NEXT_CLI localhost --priority=NORMAL" \
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7714 0 \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7715 -S "mbedtls_ssl_handshake returned" \
7716 -s "Protocol is TLSv1.3"
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7717
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7718requires_gnutls_next_disable_tls13_compat
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7719requires_config_enabled MBEDTLS_SSL_SRV_C
7720requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7721requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7722run_test "Server version nego G->m (no compat): cli 1.2+1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7723 "$P_SRV" \
7724 "$G_NEXT_CLI localhost --priority=NORMAL:%DISABLE_TLS13_COMPAT_MODE" \
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7725 0 \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7726 -S "mbedtls_ssl_handshake returned" \
7727 -s "Protocol is TLSv1.3"
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7728
7729# GnuTLS can be setup to send a ClientHello containing a supported versions
7730# extension proposing TLS 1.2 (preferred) and then TLS 1.3. In that case,
7731# a TLS 1.3 and TLS 1.2 capable server is supposed to negotiate TLS 1.2 and
7732# to indicate in the ServerHello that it downgrades from TLS 1.3. The GnuTLS
7733# client then detects the downgrade indication and aborts the handshake even
7734# if TLS 1.2 was its preferred version. Keeping the test even if the
7735# handshake fails eventually as it exercices parts of the Mbed TLS
7736# implementation that are otherwise not exercised.
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7737requires_config_enabled MBEDTLS_SSL_SRV_C
7738requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7739requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7740run_test "Server version nego G->m: cli 1.2+1.3 (1.2 preferred!), srv 1.2+1.3 -> 1.2" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7741 "$P_SRV" \
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7742 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:+VERS-TLS1.3" \
7743 1 \
7744 -c "Detected downgrade to TLS 1.2 from TLS 1.3"
7745
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7746requires_config_enabled MBEDTLS_SSL_SRV_C
7747requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7748requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7749requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7750run_test "Server version nego G->m: cli 1.2+1.3, srv min=1.3 -> 1.3" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7751 "$P_SRV min_version=tls13" \
7752 "$G_NEXT_CLI localhost --priority=NORMAL" \
7753 0 \
7754 -S "mbedtls_ssl_handshake returned" \
7755 -s "Protocol is TLSv1.3"
7756
7757requires_config_enabled MBEDTLS_SSL_SRV_C
7758requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_3
7759requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7760run_test "Server version nego G->m: cli 1.2+1.3, srv 1.2 -> 1.2" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7761 "$P_SRV" \
7762 "$G_NEXT_CLI localhost --priority=NORMAL" \
7763 0 \
7764 -S "mbedtls_ssl_handshake returned" \
7765 -s "Protocol is TLSv1.2"
7766
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7767requires_config_enabled MBEDTLS_SSL_SRV_C
7768requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7769requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7770requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7771run_test "Server version nego G->m: cli 1.2+1.3, max=1.2 -> 1.2" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7772 "$P_SRV max_version=tls12" \
7773 "$G_NEXT_CLI localhost --priority=NORMAL" \
7774 0 \
7775 -S "mbedtls_ssl_handshake returned" \
7776 -s "Protocol is TLSv1.2"
7777
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7778requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7779run_test "Not supported version G->m: cli 1.0, (1.2)+(1.3)" \
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7780 "$P_SRV" \
7781 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.0" \
7782 1 \
7783 -s "Handshake protocol not within min/max boundaries" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7784 -S "Protocol is TLSv1.0"
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7785
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7786requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7787run_test "Not supported version G->m: cli 1.1, (1.2)+(1.3)" \
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7788 "$P_SRV" \
7789 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.1" \
7790 1 \
7791 -s "Handshake protocol not within min/max boundaries" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7792 -S "Protocol is TLSv1.1"
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7793
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7794requires_config_enabled MBEDTLS_SSL_SRV_C
7795requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7796run_test "Not supported version G->m: cli 1.2, srv 1.3" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7797 "$P_SRV" \
7798 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
7799 1 \
7800 -s "Handshake protocol not within min/max boundaries" \
7801 -S "Protocol is TLSv1.2"
7802
7803requires_config_enabled MBEDTLS_SSL_SRV_C
7804requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7805run_test "Not supported version G->m: cli 1.3, srv 1.2" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7806 "$P_SRV" \
7807 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3" \
7808 1 \
7809 -S "Handshake protocol not within min/max boundaries" \
7810 -s "The handshake negotiation failed" \
7811 -S "Protocol is TLSv1.3"
7812
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7813requires_config_enabled MBEDTLS_SSL_SRV_C
7814requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7815requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7816run_test "Not supported version G->m: cli 1.2, srv min=1.3" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7817 "$P_SRV min_version=tls13" \
7818 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
7819 1 \
7820 -s "Handshake protocol not within min/max boundaries" \
7821 -S "Protocol is TLSv1.2"
7822
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7823requires_config_enabled MBEDTLS_SSL_SRV_C
7824requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7825requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7826run_test "Not supported version G->m: cli 1.3, srv max=1.2" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7827 "$P_SRV max_version=tls12" \
7828 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3" \
7829 1 \
7830 -S "Handshake protocol not within min/max boundaries" \
7831 -s "The handshake negotiation failed" \
7832 -S "Protocol is TLSv1.3"
7833
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7834# Tests of version negotiation on server side against OpenSSL client
7835
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7836requires_config_enabled MBEDTLS_SSL_SRV_C
7837requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7838requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7839run_test "Server version nego O->m: cli 1.2, srv 1.2+(1.3) -> 1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7840 "$P_SRV" \
7841 "$O_NEXT_CLI -tls1_2" \
7842 0 \
7843 -S "mbedtls_ssl_handshake returned" \
7844 -s "Protocol is TLSv1.2"
7845
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7846requires_config_enabled MBEDTLS_SSL_SRV_C
7847requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7848requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7849requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7850run_test "Server version nego O->m: cli 1.2, srv max=1.2 -> 1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7851 "$P_SRV max_version=tls12" \
7852 "$O_NEXT_CLI -tls1_2" \
7853 0 \
7854 -S "mbedtls_ssl_handshake returned" \
7855 -s "Protocol is TLSv1.2"
7856
7857requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7858requires_config_enabled MBEDTLS_SSL_SRV_C
7859requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7860requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7861run_test "Server version nego O->m: cli 1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7862 "$P_SRV" \
7863 "$O_NEXT_CLI -tls1_3" \
7864 0 \
7865 -S "mbedtls_ssl_handshake returned" \
7866 -s "Protocol is TLSv1.3"
7867
7868requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7869requires_config_enabled MBEDTLS_SSL_SRV_C
7870requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7871requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7872requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7873run_test "Server version nego O->m: cli 1.3, srv min=1.3 -> 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7874 "$P_SRV min_version=tls13" \
7875 "$O_NEXT_CLI -tls1_3" \
7876 0 \
7877 -S "mbedtls_ssl_handshake returned" \
7878 -s "Protocol is TLSv1.3"
7879
7880requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7881requires_config_enabled MBEDTLS_SSL_SRV_C
7882requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7883requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7884run_test "Server version nego O->m: cli 1.2+1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7885 "$P_SRV" \
7886 "$O_NEXT_CLI" \
7887 0 \
7888 -S "mbedtls_ssl_handshake returned" \
7889 -s "Protocol is TLSv1.3"
7890
7891requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7892requires_config_enabled MBEDTLS_SSL_SRV_C
7893requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7894requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7895run_test "Server version nego O->m (no compat): cli 1.2+1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7896 "$P_SRV" \
7897 "$O_NEXT_CLI -no_middlebox" \
7898 0 \
7899 -S "mbedtls_ssl_handshake returned" \
7900 -s "Protocol is TLSv1.3"
7901
7902requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7903requires_config_enabled MBEDTLS_SSL_SRV_C
7904requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7905requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7906requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7907run_test "Server version nego O->m: cli 1.2+1.3, srv min=1.3 -> 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7908 "$P_SRV min_version=tls13" \
7909 "$O_NEXT_CLI" \
7910 0 \
7911 -S "mbedtls_ssl_handshake returned" \
7912 -s "Protocol is TLSv1.3"
7913
7914requires_config_enabled MBEDTLS_SSL_SRV_C
7915requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_3
7916requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7917run_test "Server version nego O->m: cli 1.2+1.3, srv 1.2 -> 1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7918 "$P_SRV" \
7919 "$O_NEXT_CLI" \
7920 0 \
7921 -S "mbedtls_ssl_handshake returned" \
7922 -s "Protocol is TLSv1.2"
7923
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7924requires_config_enabled MBEDTLS_SSL_SRV_C
7925requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7926requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7927requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7928run_test "Server version nego O->m: cli 1.2+1.3, srv max=1.2 -> 1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7929 "$P_SRV max_version=tls12" \
7930 "$O_NEXT_CLI" \
7931 0 \
7932 -S "mbedtls_ssl_handshake returned" \
7933 -s "Protocol is TLSv1.2"
7934
7935requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7936run_test "Not supported version O->m: cli 1.0, srv (1.2)+(1.3)" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7937 "$P_SRV" \
7938 "$O_CLI -tls1" \
7939 1 \
7940 -s "Handshake protocol not within min/max boundaries" \
7941 -S "Protocol is TLSv1.0"
7942
7943requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7944run_test "Not supported version O->m: cli 1.1, srv (1.2)+(1.3)" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7945 "$P_SRV" \
7946 "$O_CLI -tls1_1" \
7947 1 \
7948 -s "Handshake protocol not within min/max boundaries" \
7949 -S "Protocol is TLSv1.1"
7950
7951requires_config_enabled MBEDTLS_SSL_SRV_C
7952requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7953run_test "Not supported version O->m: cli 1.2, srv 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7954 "$P_SRV" \
7955 "$O_NEXT_CLI -tls1_2" \
7956 1 \
7957 -s "Handshake protocol not within min/max boundaries" \
7958 -S "Protocol is TLSv1.2"
7959
7960requires_config_enabled MBEDTLS_SSL_SRV_C
7961requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7962run_test "Not supported version O->m: cli 1.3, srv 1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7963 "$P_SRV" \
7964 "$O_NEXT_CLI -tls1_3" \
7965 1 \
7966 -S "Handshake protocol not within min/max boundaries" \
7967 -s "The handshake negotiation failed" \
7968 -S "Protocol is TLSv1.3"
7969
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7970requires_config_enabled MBEDTLS_SSL_SRV_C
7971requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7972requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7973run_test "Not supported version O->m: cli 1.2, srv min=1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7974 "$P_SRV min_version=tls13" \
7975 "$O_NEXT_CLI -tls1_2" \
7976 1 \
7977 -s "Handshake protocol not within min/max boundaries" \
7978 -S "Protocol is TLSv1.2"
7979
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7980requires_config_enabled MBEDTLS_SSL_SRV_C
7981requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7982requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7983run_test "Not supported version O->m: cli 1.3, srv max=1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7984 "$P_SRV max_version=tls12" \
7985 "$O_NEXT_CLI -tls1_3" \
7986 1 \
7987 -S "Handshake protocol not within min/max boundaries" \
7988 -s "The handshake negotiation failed" \
7989 -S "Protocol is TLSv1.3"
7990
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]7991# Tests of version negotiation on client side against GnuTLS and OpenSSL server
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7992
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7993requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7994run_test "Not supported version: srv max TLS 1.0" \
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7995 "$G_SRV --priority=NORMAL:-VERS-TLS-ALL:+VERS-TLS1.0" \
7996 "$P_CLI" \
7997 1 \
7998 -s "Error in protocol version" \
7999 -c "Handshake protocol not within min/max boundaries" \
8000 -S "Version: TLS1.0" \
8001 -C "Protocol is TLSv1.0"
8002
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8003requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]8004run_test "Not supported version: srv max TLS 1.1" \
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]8005 "$G_SRV --priority=NORMAL:-VERS-TLS-ALL:+VERS-TLS1.1" \
8006 "$P_CLI" \
8007 1 \
8008 -s "Error in protocol version" \
8009 -c "Handshake protocol not within min/max boundaries" \
8010 -S "Version: TLS1.1" \
8011 -C "Protocol is TLSv1.1"
8012
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]8013requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
8014requires_config_enabled MBEDTLS_DEBUG_C
8015requires_config_enabled MBEDTLS_SSL_CLI_C
8016skip_handshake_stage_check
8017requires_gnutls_tls1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]8018run_test "TLS 1.3: Not supported version:gnutls: srv max TLS 1.0" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]8019 "$G_NEXT_SRV --priority=NORMAL:-VERS-TLS-ALL:+VERS-TLS1.0 -d 4" \
8020 "$P_CLI debug_level=4" \
8021 1 \
8022 -s "Client's version: 3.3" \
8023 -S "Version: TLS1.0" \
8024 -C "Protocol is TLSv1.0"
8025
8026requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
8027requires_config_enabled MBEDTLS_DEBUG_C
8028requires_config_enabled MBEDTLS_SSL_CLI_C
8029skip_handshake_stage_check
8030requires_gnutls_tls1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]8031run_test "TLS 1.3: Not supported version:gnutls: srv max TLS 1.1" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]8032 "$G_NEXT_SRV --priority=NORMAL:-VERS-TLS-ALL:+VERS-TLS1.1 -d 4" \
8033 "$P_CLI debug_level=4" \
8034 1 \
8035 -s "Client's version: 3.3" \
8036 -S "Version: TLS1.1" \
8037 -C "Protocol is TLSv1.1"
8038
8039requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
8040requires_config_enabled MBEDTLS_DEBUG_C
8041requires_config_enabled MBEDTLS_SSL_CLI_C
8042skip_handshake_stage_check
8043requires_gnutls_tls1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]8044run_test "TLS 1.3: Not supported version:gnutls: srv max TLS 1.2" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]8045 "$G_NEXT_SRV --priority=NORMAL:-VERS-TLS-ALL:+VERS-TLS1.2 -d 4" \
8046 "$P_CLI force_version=tls13 debug_level=4" \
8047 1 \
8048 -s "Client's version: 3.3" \
8049 -c "is a fatal alert message (msg 40)" \
8050 -S "Version: TLS1.2" \
8051 -C "Protocol is TLSv1.2"
8052
8053requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
8054requires_config_enabled MBEDTLS_DEBUG_C
8055requires_config_enabled MBEDTLS_SSL_CLI_C
8056skip_handshake_stage_check
8057requires_openssl_next
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]8058run_test "TLS 1.3: Not supported version:openssl: srv max TLS 1.0" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]8059 "$O_NEXT_SRV -msg -tls1" \
8060 "$P_CLI debug_level=4" \
8061 1 \
8062 -s "fatal protocol_version" \
8063 -c "is a fatal alert message (msg 70)" \
8064 -S "Version: TLS1.0" \
8065 -C "Protocol : TLSv1.0"
8066
8067requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
8068requires_config_enabled MBEDTLS_DEBUG_C
8069requires_config_enabled MBEDTLS_SSL_CLI_C
8070skip_handshake_stage_check
8071requires_openssl_next
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]8072run_test "TLS 1.3: Not supported version:openssl: srv max TLS 1.1" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]8073 "$O_NEXT_SRV -msg -tls1_1" \
8074 "$P_CLI debug_level=4" \
8075 1 \
8076 -s "fatal protocol_version" \
8077 -c "is a fatal alert message (msg 70)" \
8078 -S "Version: TLS1.1" \
8079 -C "Protocol : TLSv1.1"
8080
8081requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
8082requires_config_enabled MBEDTLS_DEBUG_C
8083requires_config_enabled MBEDTLS_SSL_CLI_C
8084skip_handshake_stage_check
8085requires_openssl_next
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]8086run_test "TLS 1.3: Not supported version:openssl: srv max TLS 1.2" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]8087 "$O_NEXT_SRV -msg -tls1_2" \
8088 "$P_CLI force_version=tls13 debug_level=4" \
8089 1 \
8090 -s "fatal protocol_version" \
8091 -c "is a fatal alert message (msg 70)" \
8092 -S "Version: TLS1.2" \
8093 -C "Protocol : TLSv1.2"
8094
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8095# Tests for ALPN extension
8096
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8097run_test "ALPN: none" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8098 "$P_SRV debug_level=3" \
8099 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8100 0 \
8101 -C "client hello, adding alpn extension" \
8102 -S "found alpn extension" \
8103 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8104 -S "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8105 -C "found alpn extension " \
8106 -C "Application Layer Protocol is" \
8107 -S "Application Layer Protocol is"
8108
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8109run_test "ALPN: client only" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8110 "$P_SRV debug_level=3" \
8111 "$P_CLI debug_level=3 alpn=abc,1234" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8112 0 \
8113 -c "client hello, adding alpn extension" \
8114 -s "found alpn extension" \
8115 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8116 -S "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8117 -C "found alpn extension " \
8118 -c "Application Layer Protocol is (none)" \
8119 -S "Application Layer Protocol is"
8120
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8121run_test "ALPN: server only" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8122 "$P_SRV debug_level=3 alpn=abc,1234" \
8123 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8124 0 \
8125 -C "client hello, adding alpn extension" \
8126 -S "found alpn extension" \
8127 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8128 -S "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8129 -C "found alpn extension " \
8130 -C "Application Layer Protocol is" \
8131 -s "Application Layer Protocol is (none)"
8132
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8133run_test "ALPN: both, common cli1-srv1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8134 "$P_SRV debug_level=3 alpn=abc,1234" \
8135 "$P_CLI debug_level=3 alpn=abc,1234" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8136 0 \
8137 -c "client hello, adding alpn extension" \
8138 -s "found alpn extension" \
8139 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8140 -s "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8141 -c "found alpn extension" \
8142 -c "Application Layer Protocol is abc" \
8143 -s "Application Layer Protocol is abc"
8144
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8145run_test "ALPN: both, common cli2-srv1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8146 "$P_SRV debug_level=3 alpn=abc,1234" \
8147 "$P_CLI debug_level=3 alpn=1234,abc" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8148 0 \
8149 -c "client hello, adding alpn extension" \
8150 -s "found alpn extension" \
8151 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8152 -s "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8153 -c "found alpn extension" \
8154 -c "Application Layer Protocol is abc" \
8155 -s "Application Layer Protocol is abc"
8156
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8157run_test "ALPN: both, common cli1-srv2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8158 "$P_SRV debug_level=3 alpn=abc,1234" \
8159 "$P_CLI debug_level=3 alpn=1234,abcde" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8160 0 \
8161 -c "client hello, adding alpn extension" \
8162 -s "found alpn extension" \
8163 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8164 -s "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8165 -c "found alpn extension" \
8166 -c "Application Layer Protocol is 1234" \
8167 -s "Application Layer Protocol is 1234"
8168
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8169run_test "ALPN: both, no common" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8170 "$P_SRV debug_level=3 alpn=abc,123" \
8171 "$P_CLI debug_level=3 alpn=1234,abcde" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8172 1 \
8173 -c "client hello, adding alpn extension" \
8174 -s "found alpn extension" \
8175 -c "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8176 -S "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8177 -C "found alpn extension" \
8178 -C "Application Layer Protocol is 1234" \
8179 -S "Application Layer Protocol is 1234"
8180
Manuel Pégourié-Gonnard83d8c732014-04-07 13:24:21 +0200[diff] [blame]8181
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8182# Tests for keyUsage in leaf certificates, part 1:
8183# server-side certificate/suite selection
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8184#
8185# This is only about 1.2 (for 1.3, all key exchanges use signatures).
8186# In 4.0 this will probably go away as all TLS 1.2 key exchanges will use
8187# signatures too, following the removal of RSA #8170 and static ECDH #9201.
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8188
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8189run_test "keyUsage srv 1.2: RSA, digitalSignature -> (EC)DHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8190 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server2.key \
8191 crt_file=$DATA_FILES_PATH/server2.ku-ds.crt" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8192 "$P_CLI" \
8193 0 \
Manuel Pégourié-Gonnard17cde5f2014-05-22 14:42:39 +0200[diff] [blame]8194 -c "Ciphersuite is TLS-[EC]*DHE-RSA-WITH-"
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8195
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8196run_test "keyUsage srv 1.2: RSA, keyEncipherment -> RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8197 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server2.key \
8198 crt_file=$DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8199 "$P_CLI" \
8200 0 \
8201 -c "Ciphersuite is TLS-RSA-WITH-"
8202
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8203run_test "keyUsage srv 1.2: RSA, keyAgreement -> fail" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8204 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server2.key \
8205 crt_file=$DATA_FILES_PATH/server2.ku-ka.crt" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]8206 "$P_CLI" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8207 1 \
8208 -C "Ciphersuite is "
8209
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]8210requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8211run_test "keyUsage srv 1.2: ECC, digitalSignature -> ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8212 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server5.key \
8213 crt_file=$DATA_FILES_PATH/server5.ku-ds.crt" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8214 "$P_CLI" \
8215 0 \
8216 -c "Ciphersuite is TLS-ECDHE-ECDSA-WITH-"
8217
8218
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8219run_test "keyUsage srv 1.2: ECC, keyAgreement -> ECDH-" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8220 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server5.key \
8221 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8222 "$P_CLI" \
8223 0 \
8224 -c "Ciphersuite is TLS-ECDH-"
8225
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8226run_test "keyUsage srv 1.2: ECC, keyEncipherment -> fail" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8227 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server5.key \
8228 crt_file=$DATA_FILES_PATH/server5.ku-ke.crt" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]8229 "$P_CLI" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8230 1 \
8231 -C "Ciphersuite is "
8232
8233# Tests for keyUsage in leaf certificates, part 2:
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8234# client-side checking of server cert
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8235#
8236# TLS 1.3 uses only signature, but for 1.2 it depends on the key exchange.
8237# In 4.0 this will probably change as all TLS 1.2 key exchanges will use
8238# signatures too, following the removal of RSA #8170 and static ECDH #9201.
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8239
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8240run_test "keyUsage cli 1.2: DigitalSignature+KeyEncipherment, RSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8241 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8242 -cert $DATA_FILES_PATH/server2.ku-ds_ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8243 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8244 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8245 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8246 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8247 -C "Processing of the Certificate handshake message failed" \
8248 -c "Ciphersuite is TLS-"
8249
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8250run_test "keyUsage cli 1.2: DigitalSignature+KeyEncipherment, DHE-RSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8251 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8252 -cert $DATA_FILES_PATH/server2.ku-ds_ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8253 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8254 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
8255 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8256 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8257 -C "Processing of the Certificate handshake message failed" \
8258 -c "Ciphersuite is TLS-"
8259
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8260run_test "keyUsage cli 1.2: KeyEncipherment, RSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8261 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8262 -cert $DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8263 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8264 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8265 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8266 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8267 -C "Processing of the Certificate handshake message failed" \
8268 -c "Ciphersuite is TLS-"
8269
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8270run_test "keyUsage cli 1.2: KeyEncipherment, DHE-RSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8271 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8272 -cert $DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8273 "$P_CLI debug_level=3 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8274 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
8275 1 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8276 -c "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8277 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8278 -C "Ciphersuite is TLS-" \
8279 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8280 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8281 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8282
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8283run_test "keyUsage cli 1.2: KeyEncipherment, DHE-RSA: fail (soft)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8284 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8285 -cert $DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8286 "$P_CLI debug_level=3 auth_mode=optional \
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]8287 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
8288 0 \
8289 -c "bad certificate (usage extensions)" \
8290 -C "Processing of the Certificate handshake message failed" \
8291 -c "Ciphersuite is TLS-" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8292 -C "send alert level=2 message=43" \
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]8293 -c "! Usage does not match the keyUsage extension"
8294
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8295run_test "keyUsage cli 1.2: DigitalSignature, DHE-RSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8296 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8297 -cert $DATA_FILES_PATH/server2.ku-ds.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8298 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8299 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
8300 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8301 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8302 -C "Processing of the Certificate handshake message failed" \
8303 -c "Ciphersuite is TLS-"
8304
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8305run_test "keyUsage cli 1.2: DigitalSignature, RSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8306 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8307 -cert $DATA_FILES_PATH/server2.ku-ds.crt" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8308 "$P_CLI debug_level=3 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8309 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8310 1 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8311 -c "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8312 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8313 -C "Ciphersuite is TLS-" \
8314 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8315 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8316 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8317
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8318run_test "keyUsage cli 1.2: DigitalSignature, RSA: fail (soft)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8319 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8320 -cert $DATA_FILES_PATH/server2.ku-ds.crt" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8321 "$P_CLI debug_level=3 auth_mode=optional \
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]8322 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8323 0 \
8324 -c "bad certificate (usage extensions)" \
8325 -C "Processing of the Certificate handshake message failed" \
8326 -c "Ciphersuite is TLS-" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8327 -C "send alert level=2 message=43" \
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]8328 -c "! Usage does not match the keyUsage extension"
8329
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8330requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8331requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8332run_test "keyUsage cli 1.3: DigitalSignature, RSA: OK" \
8333 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server2.key \
8334 -cert $DATA_FILES_PATH/server2-sha256.ku-ds.crt" \
8335 "$P_CLI debug_level=3" \
8336 0 \
8337 -C "bad certificate (usage extensions)" \
8338 -C "Processing of the Certificate handshake message failed" \
8339 -c "Ciphersuite is"
8340
8341requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8342requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8343run_test "keyUsage cli 1.3: DigitalSignature+KeyEncipherment, RSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8344 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server2.key \
8345 -cert $DATA_FILES_PATH/server2-sha256.ku-ds_ke.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8346 "$P_CLI debug_level=3" \
8347 0 \
8348 -C "bad certificate (usage extensions)" \
8349 -C "Processing of the Certificate handshake message failed" \
8350 -c "Ciphersuite is"
8351
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8352requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8353requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8354run_test "keyUsage cli 1.3: KeyEncipherment, RSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8355 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server2.key \
8356 -cert $DATA_FILES_PATH/server2-sha256.ku-ke.crt" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8357 "$P_CLI debug_level=3" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8358 1 \
8359 -c "bad certificate (usage extensions)" \
8360 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8361 -C "Ciphersuite is" \
8362 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8363 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8364 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8365
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8366requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8367requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8368run_test "keyUsage cli 1.3: KeyAgreement, RSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8369 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server2.key \
8370 -cert $DATA_FILES_PATH/server2-sha256.ku-ka.crt" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8371 "$P_CLI debug_level=3" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8372 1 \
8373 -c "bad certificate (usage extensions)" \
8374 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8375 -C "Ciphersuite is" \
8376 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8377 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8378 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8379
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8380requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8381requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8382run_test "keyUsage cli 1.3: DigitalSignature, ECDSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8383 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8384 -cert $DATA_FILES_PATH/server5.ku-ds.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8385 "$P_CLI debug_level=3" \
8386 0 \
8387 -C "bad certificate (usage extensions)" \
8388 -C "Processing of the Certificate handshake message failed" \
8389 -c "Ciphersuite is"
8390
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8391requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8392requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8393run_test "keyUsage cli 1.3: KeyEncipherment, ECDSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8394 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8395 -cert $DATA_FILES_PATH/server5.ku-ke.crt" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8396 "$P_CLI debug_level=3" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8397 1 \
8398 -c "bad certificate (usage extensions)" \
8399 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8400 -C "Ciphersuite is" \
8401 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8402 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8403 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8404
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8405requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8406requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8407run_test "keyUsage cli 1.3: KeyAgreement, ECDSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8408 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8409 -cert $DATA_FILES_PATH/server5.ku-ka.crt" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8410 "$P_CLI debug_level=3" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8411 1 \
8412 -c "bad certificate (usage extensions)" \
8413 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8414 -C "Ciphersuite is" \
8415 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8416 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8417 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8418
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8419# Tests for keyUsage in leaf certificates, part 3:
8420# server-side checking of client cert
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8421#
8422# Here, both 1.2 and 1.3 only use signatures.
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8423
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8424requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8425run_test "keyUsage cli-auth 1.2: RSA, DigitalSignature: OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8426 "$P_SRV debug_level=1 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8427 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server2.key \
8428 -cert $DATA_FILES_PATH/server2.ku-ds.crt" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8429 0 \
Ronald Cronf9c13fe2022-06-22 14:35:17 +0200[diff] [blame]8430 -s "Verifying peer X.509 certificate... ok" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8431 -S "bad certificate (usage extensions)" \
8432 -S "Processing of the Certificate handshake message failed"
8433
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8434requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8435run_test "keyUsage cli-auth 1.2: RSA, DigitalSignature+KeyEncipherment: OK" \
8436 "$P_SRV debug_level=1 auth_mode=optional" \
8437 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server2.key \
8438 -cert $DATA_FILES_PATH/server2.ku-ds_ke.crt" \
8439 0 \
8440 -s "Verifying peer X.509 certificate... ok" \
8441 -S "bad certificate (usage extensions)" \
8442 -S "Processing of the Certificate handshake message failed"
8443
8444requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8445run_test "keyUsage cli-auth 1.2: RSA, KeyEncipherment: fail (soft)" \
8446 "$P_SRV debug_level=3 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8447 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server2.key \
8448 -cert $DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8449 0 \
8450 -s "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8451 -S "send alert level=2 message=43" \
8452 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8453 -S "Processing of the Certificate handshake message failed"
8454
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8455requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8456run_test "keyUsage cli-auth 1.2: RSA, KeyEncipherment: fail (hard)" \
8457 "$P_SRV debug_level=3 force_version=tls12 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8458 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server2.key \
8459 -cert $DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8460 1 \
8461 -s "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8462 -s "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8463 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8464 -s "Processing of the Certificate handshake message failed"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8465 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8466
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8467requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8468run_test "keyUsage cli-auth 1.2: ECDSA, DigitalSignature: OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8469 "$P_SRV debug_level=1 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8470 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8471 -cert $DATA_FILES_PATH/server5.ku-ds.crt" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8472 0 \
Ronald Cronf9c13fe2022-06-22 14:35:17 +0200[diff] [blame]8473 -s "Verifying peer X.509 certificate... ok" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8474 -S "bad certificate (usage extensions)" \
8475 -S "Processing of the Certificate handshake message failed"
8476
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8477requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8478run_test "keyUsage cli-auth 1.2: ECDSA, KeyAgreement: fail (soft)" \
8479 "$P_SRV debug_level=3 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8480 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8481 -cert $DATA_FILES_PATH/server5.ku-ka.crt" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8482 0 \
8483 -s "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8484 -S "send alert level=2 message=43" \
8485 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8486 -S "Processing of the Certificate handshake message failed"
8487
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8488requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
8489run_test "keyUsage cli-auth 1.2: ECDSA, KeyAgreement: fail (hard)" \
8490 "$P_SRV debug_level=3 auth_mode=required" \
8491 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8492 -cert $DATA_FILES_PATH/server5.ku-ka.crt" \
8493 1 \
8494 -s "bad certificate (usage extensions)" \
8495 -s "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8496 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8497 -s "Processing of the Certificate handshake message failed"
8498 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
8499
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8500requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8501requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8502run_test "keyUsage cli-auth 1.3: RSA, DigitalSignature: OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8503 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8504 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server2.key \
8505 -cert $DATA_FILES_PATH/server2-sha256.ku-ds.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8506 0 \
Ronald Cronf9c13fe2022-06-22 14:35:17 +0200[diff] [blame]8507 -s "Verifying peer X.509 certificate... ok" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8508 -S "bad certificate (usage extensions)" \
8509 -S "Processing of the Certificate handshake message failed"
8510
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8511requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8512requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8513run_test "keyUsage cli-auth 1.3: RSA, DigitalSignature+KeyEncipherment: OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8514 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8515 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server2.key \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8516 -cert $DATA_FILES_PATH/server2-sha256.ku-ds_ke.crt" \
8517 0 \
8518 -s "Verifying peer X.509 certificate... ok" \
8519 -S "bad certificate (usage extensions)" \
8520 -S "Processing of the Certificate handshake message failed"
8521
8522requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8523requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8524run_test "keyUsage cli-auth 1.3: RSA, KeyEncipherment: fail (soft)" \
8525 "$P_SRV debug_level=3 force_version=tls13 auth_mode=optional" \
8526 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server2.key \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8527 -cert $DATA_FILES_PATH/server2-sha256.ku-ke.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8528 0 \
8529 -s "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8530 -S "send alert level=2 message=43" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8531 -s "! Usage does not match the keyUsage extension" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8532 -S "Processing of the Certificate handshake message failed"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8533
8534requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8535requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8536run_test "keyUsage cli-auth 1.3: RSA, KeyEncipherment: fail (hard)" \
8537 "$P_SRV debug_level=3 force_version=tls13 auth_mode=required" \
Manuel Pégourié-Gonnardcdd5b072024-08-12 09:50:18 +0200[diff] [blame]8538 "$P_CLI key_file=$DATA_FILES_PATH/server2.key \
8539 crt_file=$DATA_FILES_PATH/server2-sha256.ku-ke.crt" \
8540 1 \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8541 -s "bad certificate (usage extensions)" \
8542 -s "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8543 -s "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8544 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8545 -s "! mbedtls_ssl_handshake returned"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8546 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8547
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8548requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8549requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8550run_test "keyUsage cli-auth 1.3: ECDSA, DigitalSignature: OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8551 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8552 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8553 -cert $DATA_FILES_PATH/server5.ku-ds.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8554 0 \
Ronald Cronf9c13fe2022-06-22 14:35:17 +0200[diff] [blame]8555 -s "Verifying peer X.509 certificate... ok" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8556 -S "bad certificate (usage extensions)" \
8557 -S "Processing of the Certificate handshake message failed"
8558
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8559requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8560requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8561run_test "keyUsage cli-auth 1.3: ECDSA, KeyAgreement: fail (soft)" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8562 "$P_SRV debug_level=3 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8563 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8564 -cert $DATA_FILES_PATH/server5.ku-ka.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8565 0 \
8566 -s "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8567 -s "! Usage does not match the keyUsage extension" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8568 -S "Processing of the Certificate handshake message failed"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8569
8570requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8571requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8572run_test "keyUsage cli-auth 1.3: ECDSA, KeyAgreement: fail (hard)" \
8573 "$P_SRV debug_level=3 force_version=tls13 auth_mode=required" \
Manuel Pégourié-Gonnardcdd5b072024-08-12 09:50:18 +0200[diff] [blame]8574 "$P_CLI key_file=$DATA_FILES_PATH/server5.key \
8575 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
8576 1 \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8577 -s "bad certificate (usage extensions)" \
8578 -s "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8579 -s "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8580 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8581 -s "! mbedtls_ssl_handshake returned"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8582 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8583
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8584# Tests for extendedKeyUsage, part 1: server-side certificate/suite selection
8585
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8586run_test "extKeyUsage srv: serverAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8587 "$P_SRV key_file=$DATA_FILES_PATH/server5.key \
8588 crt_file=$DATA_FILES_PATH/server5.eku-srv.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8589 "$P_CLI" \
8590 0
8591
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8592run_test "extKeyUsage srv: serverAuth,clientAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8593 "$P_SRV key_file=$DATA_FILES_PATH/server5.key \
8594 crt_file=$DATA_FILES_PATH/server5.eku-srv.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8595 "$P_CLI" \
8596 0
8597
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8598run_test "extKeyUsage srv: codeSign,anyEKU -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8599 "$P_SRV key_file=$DATA_FILES_PATH/server5.key \
8600 crt_file=$DATA_FILES_PATH/server5.eku-cs_any.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8601 "$P_CLI" \
8602 0
8603
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8604run_test "extKeyUsage srv: codeSign -> fail" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8605 "$P_SRV key_file=$DATA_FILES_PATH/server5.key \
8606 crt_file=$DATA_FILES_PATH/server5.eku-cli.crt" \
Manuel Pégourié-Gonnard7eb58cb2015-07-07 11:54:14 +0200[diff] [blame]8607 "$P_CLI" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8608 1
8609
8610# Tests for extendedKeyUsage, part 2: client-side checking of server cert
8611
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8612requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8613run_test "extKeyUsage cli 1.2: serverAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8614 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server5.key \
8615 -cert $DATA_FILES_PATH/server5.eku-srv.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8616 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8617 0 \
8618 -C "bad certificate (usage extensions)" \
8619 -C "Processing of the Certificate handshake message failed" \
8620 -c "Ciphersuite is TLS-"
8621
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8622requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8623run_test "extKeyUsage cli 1.2: serverAuth,clientAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8624 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server5.key \
8625 -cert $DATA_FILES_PATH/server5.eku-srv_cli.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8626 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8627 0 \
8628 -C "bad certificate (usage extensions)" \
8629 -C "Processing of the Certificate handshake message failed" \
8630 -c "Ciphersuite is TLS-"
8631
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8632requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8633run_test "extKeyUsage cli 1.2: codeSign,anyEKU -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8634 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server5.key \
8635 -cert $DATA_FILES_PATH/server5.eku-cs_any.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8636 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8637 0 \
8638 -C "bad certificate (usage extensions)" \
8639 -C "Processing of the Certificate handshake message failed" \
8640 -c "Ciphersuite is TLS-"
8641
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8642requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaite04db1fb2024-08-16 17:18:28 +0100[diff] [blame]8643run_test "extKeyUsage cli 1.2: codeSign -> fail (soft)" \
8644 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server5.key \
8645 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
8646 "$P_CLI debug_level=3 auth_mode=optional" \
8647 0 \
8648 -c "bad certificate (usage extensions)" \
8649 -C "Processing of the Certificate handshake message failed" \
8650 -c "Ciphersuite is TLS-" \
8651 -C "send alert level=2 message=43" \
8652 -c "! Usage does not match the extendedKeyUsage extension"
8653 # MBEDTLS_X509_BADCERT_EXT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
8654
8655requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8656run_test "extKeyUsage cli 1.2: codeSign -> fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8657 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server5.key \
8658 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8659 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8660 1 \
8661 -c "bad certificate (usage extensions)" \
8662 -c "Processing of the Certificate handshake message failed" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8663 -C "Ciphersuite is TLS-" \
8664 -c "send alert level=2 message=43" \
8665 -c "! Usage does not match the extendedKeyUsage extension"
8666 # MBEDTLS_X509_BADCERT_EXT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8667
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8668requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8669requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8670run_test "extKeyUsage cli 1.3: serverAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8671 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8672 -cert $DATA_FILES_PATH/server5.eku-srv.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8673 "$P_CLI debug_level=1" \
8674 0 \
8675 -C "bad certificate (usage extensions)" \
8676 -C "Processing of the Certificate handshake message failed" \
8677 -c "Ciphersuite is"
8678
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8679requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8680requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8681run_test "extKeyUsage cli 1.3: serverAuth,clientAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8682 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8683 -cert $DATA_FILES_PATH/server5.eku-srv_cli.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8684 "$P_CLI debug_level=1" \
8685 0 \
8686 -C "bad certificate (usage extensions)" \
8687 -C "Processing of the Certificate handshake message failed" \
8688 -c "Ciphersuite is"
8689
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8690requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8691requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8692run_test "extKeyUsage cli 1.3: codeSign,anyEKU -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8693 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8694 -cert $DATA_FILES_PATH/server5.eku-cs_any.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8695 "$P_CLI debug_level=1" \
8696 0 \
8697 -C "bad certificate (usage extensions)" \
8698 -C "Processing of the Certificate handshake message failed" \
8699 -c "Ciphersuite is"
8700
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8701requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8702requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8703run_test "extKeyUsage cli 1.3: codeSign -> fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8704 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8705 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8706 "$P_CLI debug_level=3" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8707 1 \
8708 -c "bad certificate (usage extensions)" \
8709 -c "Processing of the Certificate handshake message failed" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8710 -C "Ciphersuite is" \
8711 -c "send alert level=2 message=43" \
8712 -c "! Usage does not match the extendedKeyUsage extension"
8713 # MBEDTLS_X509_BADCERT_EXT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8714
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8715# Tests for extendedKeyUsage, part 3: server-side checking of client cert
8716
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8717requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8718run_test "extKeyUsage cli-auth 1.2: clientAuth -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8719 "$P_SRV debug_level=1 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8720 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8721 -cert $DATA_FILES_PATH/server5.eku-cli.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8722 0 \
8723 -S "bad certificate (usage extensions)" \
8724 -S "Processing of the Certificate handshake message failed"
8725
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8726requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8727run_test "extKeyUsage cli-auth 1.2: serverAuth,clientAuth -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8728 "$P_SRV debug_level=1 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8729 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8730 -cert $DATA_FILES_PATH/server5.eku-srv_cli.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8731 0 \
8732 -S "bad certificate (usage extensions)" \
8733 -S "Processing of the Certificate handshake message failed"
8734
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8735requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8736run_test "extKeyUsage cli-auth 1.2: codeSign,anyEKU -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8737 "$P_SRV debug_level=1 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8738 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8739 -cert $DATA_FILES_PATH/server5.eku-cs_any.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8740 0 \
8741 -S "bad certificate (usage extensions)" \
8742 -S "Processing of the Certificate handshake message failed"
8743
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8744requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8745run_test "extKeyUsage cli-auth 1.2: codeSign -> fail (soft)" \
8746 "$P_SRV debug_level=3 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8747 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8748 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8749 0 \
8750 -s "bad certificate (usage extensions)" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8751 -S "send alert level=2 message=43" \
8752 -s "! Usage does not match the extendedKeyUsage extension" \
8753 -S "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8754
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8755requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8756run_test "extKeyUsage cli-auth 1.2: codeSign -> fail (hard)" \
8757 "$P_SRV debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8758 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8759 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8760 1 \
8761 -s "bad certificate (usage extensions)" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8762 -s "send alert level=2 message=43" \
8763 -s "! Usage does not match the extendedKeyUsage extension" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8764 -s "Processing of the Certificate handshake message failed"
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8765 # MBEDTLS_X509_BADCERT_EXT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8766
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8767requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8768requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8769run_test "extKeyUsage cli-auth 1.3: clientAuth -> OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8770 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8771 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8772 -cert $DATA_FILES_PATH/server5.eku-cli.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8773 0 \
8774 -S "bad certificate (usage extensions)" \
8775 -S "Processing of the Certificate handshake message failed"
8776
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8777requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8778requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8779run_test "extKeyUsage cli-auth 1.3: serverAuth,clientAuth -> OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8780 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8781 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8782 -cert $DATA_FILES_PATH/server5.eku-srv_cli.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8783 0 \
8784 -S "bad certificate (usage extensions)" \
8785 -S "Processing of the Certificate handshake message failed"
8786
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8787requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8788requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8789run_test "extKeyUsage cli-auth 1.3: codeSign,anyEKU -> OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8790 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8791 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8792 -cert $DATA_FILES_PATH/server5.eku-cs_any.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8793 0 \
8794 -S "bad certificate (usage extensions)" \
8795 -S "Processing of the Certificate handshake message failed"
8796
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8797requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8798requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8799run_test "extKeyUsage cli-auth 1.3: codeSign -> fail (soft)" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8800 "$P_SRV debug_level=3 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8801 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8802 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8803 0 \
8804 -s "bad certificate (usage extensions)" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8805 -S "send alert level=2 message=43" \
8806 -s "! Usage does not match the extendedKeyUsage extension" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8807 -S "Processing of the Certificate handshake message failed"
8808
Elena Uziunaite04db1fb2024-08-16 17:18:28 +0100[diff] [blame]8809requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8810requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Elena Uziunaite04db1fb2024-08-16 17:18:28 +0100[diff] [blame]8811run_test "extKeyUsage cli-auth 1.3: codeSign -> fail (hard)" \
8812 "$P_SRV debug_level=3 force_version=tls13 auth_mode=required" \
8813 "$P_CLI key_file=$DATA_FILES_PATH/server5.key \
8814 crt_file=$DATA_FILES_PATH/server5.eku-cs.crt" \
8815 1 \
8816 -s "bad certificate (usage extensions)" \
8817 -s "send alert level=2 message=43" \
8818 -s "! Usage does not match the extendedKeyUsage extension" \
8819 -s "Processing of the Certificate handshake message failed"
8820 # MBEDTLS_X509_BADCERT_EXT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
8821
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]8822# Tests for DHM parameters loading
8823
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8824run_test "DHM parameters: reference" \
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]8825 "$P_SRV" \
8826 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8827 debug_level=3" \
8828 0 \
8829 -c "value of 'DHM: P ' (2048 bits)" \
Hanno Becker13be9902017-09-27 17:17:30 +0100[diff] [blame]8830 -c "value of 'DHM: G ' (2 bits)"
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]8831
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8832run_test "DHM parameters: other parameters" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8833 "$P_SRV dhm_file=$DATA_FILES_PATH/dhparams.pem" \
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]8834 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8835 debug_level=3" \
8836 0 \
8837 -c "value of 'DHM: P ' (1024 bits)" \
8838 -c "value of 'DHM: G ' (2 bits)"
8839
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]8840# Tests for DHM client-side size checking
8841
8842run_test "DHM size: server default, client default, OK" \
8843 "$P_SRV" \
8844 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8845 debug_level=1" \
8846 0 \
8847 -C "DHM prime too short:"
8848
8849run_test "DHM size: server default, client 2048, OK" \
8850 "$P_SRV" \
8851 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8852 debug_level=1 dhmlen=2048" \
8853 0 \
8854 -C "DHM prime too short:"
8855
8856run_test "DHM size: server 1024, client default, OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8857 "$P_SRV dhm_file=$DATA_FILES_PATH/dhparams.pem" \
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]8858 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8859 debug_level=1" \
8860 0 \
8861 -C "DHM prime too short:"
8862
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8863run_test "DHM size: server 999, client 999, OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8864 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.999.pem" \
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8865 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8866 debug_level=1 dhmlen=999" \
8867 0 \
8868 -C "DHM prime too short:"
8869
8870run_test "DHM size: server 1000, client 1000, OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8871 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.1000.pem" \
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8872 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8873 debug_level=1 dhmlen=1000" \
8874 0 \
8875 -C "DHM prime too short:"
8876
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]8877run_test "DHM size: server 1000, client default, rejected" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8878 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.1000.pem" \
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]8879 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8880 debug_level=1" \
8881 1 \
8882 -c "DHM prime too short:"
8883
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8884run_test "DHM size: server 1000, client 1001, rejected" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8885 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.1000.pem" \
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8886 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8887 debug_level=1 dhmlen=1001" \
8888 1 \
8889 -c "DHM prime too short:"
8890
8891run_test "DHM size: server 999, client 1000, rejected" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8892 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.999.pem" \
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8893 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8894 debug_level=1 dhmlen=1000" \
8895 1 \
8896 -c "DHM prime too short:"
8897
8898run_test "DHM size: server 998, client 999, rejected" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8899 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.998.pem" \
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8900 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8901 debug_level=1 dhmlen=999" \
8902 1 \
8903 -c "DHM prime too short:"
8904
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]8905run_test "DHM size: server default, client 2049, rejected" \
8906 "$P_SRV" \
8907 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8908 debug_level=1 dhmlen=2049" \
8909 1 \
8910 -c "DHM prime too short:"
8911
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]8912# Tests for PSK callback
8913
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8914run_test "PSK callback: psk, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8915 "$P_SRV psk=73776f726466697368 psk_identity=foo" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]8916 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8917 psk_identity=foo psk=73776f726466697368" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]8918 0 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]8919 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnard10c3c9f2014-06-10 15:28:52 +0200[diff] [blame]8920 -S "SSL - Unknown identity received" \
8921 -S "SSL - Verification of the message MAC failed"
8922
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8923requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
8924run_test "PSK callback: opaque psk on client, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8925 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]8926 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8927 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8928 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]8929 -C "session hash for extended master secret"\
8930 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]8931 -S "SSL - The handshake negotiation failed" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8932 -S "SSL - Unknown identity received" \
8933 -S "SSL - Verification of the message MAC failed"
8934
8935requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
8936run_test "PSK callback: opaque psk on client, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8937 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]8938 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8939 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8940 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]8941 -C "session hash for extended master secret"\
8942 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]8943 -S "SSL - The handshake negotiation failed" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8944 -S "SSL - Unknown identity received" \
8945 -S "SSL - Verification of the message MAC failed"
8946
8947requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
8948run_test "PSK callback: opaque psk on client, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8949 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]8950 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8951 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8952 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]8953 -c "session hash for extended master secret"\
8954 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]8955 -S "SSL - The handshake negotiation failed" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8956 -S "SSL - Unknown identity received" \
8957 -S "SSL - Verification of the message MAC failed"
8958
8959requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
8960run_test "PSK callback: opaque psk on client, no callback, SHA-384, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8961 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]8962 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8963 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8964 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]8965 -c "session hash for extended master secret"\
8966 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]8967 -S "SSL - The handshake negotiation failed" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8968 -S "SSL - Unknown identity received" \
8969 -S "SSL - Verification of the message MAC failed"
8970
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]8971requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8972run_test "PSK callback: opaque rsa-psk on client, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8973 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8974 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8975 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8976 0 \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8977 -C "session hash for extended master secret"\
8978 -S "session hash for extended master secret"\
8979 -S "SSL - The handshake negotiation failed" \
8980 -S "SSL - Unknown identity received" \
8981 -S "SSL - Verification of the message MAC failed"
8982
8983requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8984run_test "PSK callback: opaque rsa-psk on client, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8985 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8986 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8987 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8988 0 \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8989 -C "session hash for extended master secret"\
8990 -S "session hash for extended master secret"\
8991 -S "SSL - The handshake negotiation failed" \
8992 -S "SSL - Unknown identity received" \
8993 -S "SSL - Verification of the message MAC failed"
8994
8995requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8996run_test "PSK callback: opaque rsa-psk on client, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8997 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8998 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8999 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]9000 0 \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]9001 -c "session hash for extended master secret"\
9002 -s "session hash for extended master secret"\
9003 -S "SSL - The handshake negotiation failed" \
9004 -S "SSL - Unknown identity received" \
9005 -S "SSL - Verification of the message MAC failed"
9006
9007requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]9008run_test "PSK callback: opaque rsa-psk on client, no callback, SHA-384, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9009 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]9010 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9011 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]9012 0 \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]9013 -c "session hash for extended master secret"\
9014 -s "session hash for extended master secret"\
9015 -S "SSL - The handshake negotiation failed" \
9016 -S "SSL - Unknown identity received" \
9017 -S "SSL - Verification of the message MAC failed"
9018
9019requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9020run_test "PSK callback: opaque ecdhe-psk on client, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9021 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9022 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA256 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9023 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9024 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9025 -C "session hash for extended master secret"\
9026 -S "session hash for extended master secret"\
9027 -S "SSL - The handshake negotiation failed" \
9028 -S "SSL - Unknown identity received" \
9029 -S "SSL - Verification of the message MAC failed"
9030
9031requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9032run_test "PSK callback: opaque ecdhe-psk on client, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9033 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9034 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9035 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9036 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9037 -C "session hash for extended master secret"\
9038 -S "session hash for extended master secret"\
9039 -S "SSL - The handshake negotiation failed" \
9040 -S "SSL - Unknown identity received" \
9041 -S "SSL - Verification of the message MAC failed"
9042
9043requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9044run_test "PSK callback: opaque ecdhe-psk on client, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9045 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9046 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9047 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9048 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9049 -c "session hash for extended master secret"\
9050 -s "session hash for extended master secret"\
9051 -S "SSL - The handshake negotiation failed" \
9052 -S "SSL - Unknown identity received" \
9053 -S "SSL - Verification of the message MAC failed"
9054
9055requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9056run_test "PSK callback: opaque ecdhe-psk on client, no callback, SHA-384, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9057 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9058 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9059 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9060 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9061 -c "session hash for extended master secret"\
9062 -s "session hash for extended master secret"\
9063 -S "SSL - The handshake negotiation failed" \
9064 -S "SSL - Unknown identity received" \
9065 -S "SSL - Verification of the message MAC failed"
9066
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9067requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9068run_test "PSK callback: opaque dhe-psk on client, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9069 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9070 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA256 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9071 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9072 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9073 -C "session hash for extended master secret"\
9074 -S "session hash for extended master secret"\
9075 -S "SSL - The handshake negotiation failed" \
9076 -S "SSL - Unknown identity received" \
9077 -S "SSL - Verification of the message MAC failed"
9078
9079requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9080run_test "PSK callback: opaque dhe-psk on client, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9081 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9082 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9083 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9084 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9085 -C "session hash for extended master secret"\
9086 -S "session hash for extended master secret"\
9087 -S "SSL - The handshake negotiation failed" \
9088 -S "SSL - Unknown identity received" \
9089 -S "SSL - Verification of the message MAC failed"
9090
9091requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9092run_test "PSK callback: opaque dhe-psk on client, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9093 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9094 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9095 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9096 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9097 -c "session hash for extended master secret"\
9098 -s "session hash for extended master secret"\
9099 -S "SSL - The handshake negotiation failed" \
9100 -S "SSL - Unknown identity received" \
9101 -S "SSL - Verification of the message MAC failed"
9102
9103requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9104run_test "PSK callback: opaque dhe-psk on client, no callback, SHA-384, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9105 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9106 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9107 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9108 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9109 -c "session hash for extended master secret"\
9110 -s "session hash for extended master secret"\
9111 -S "SSL - The handshake negotiation failed" \
9112 -S "SSL - Unknown identity received" \
9113 -S "SSL - Verification of the message MAC failed"
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9114
9115requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9116run_test "PSK callback: raw psk on client, static opaque on server, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9117 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9118 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9119 psk_identity=foo psk=73776f726466697368" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9120 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9121 -C "session hash for extended master secret"\
9122 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9123 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9124 -S "SSL - Unknown identity received" \
9125 -S "SSL - Verification of the message MAC failed"
9126
9127requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9128run_test "PSK callback: raw psk on client, static opaque on server, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9129 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9130 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9131 psk_identity=foo psk=73776f726466697368" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9132 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9133 -C "session hash for extended master secret"\
9134 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9135 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9136 -S "SSL - Unknown identity received" \
9137 -S "SSL - Verification of the message MAC failed"
9138
9139requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9140run_test "PSK callback: raw psk on client, static opaque on server, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9141 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9142 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9143 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9144 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9145 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9146 -c "session hash for extended master secret"\
9147 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9148 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9149 -S "SSL - Unknown identity received" \
9150 -S "SSL - Verification of the message MAC failed"
9151
9152requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9153run_test "PSK callback: raw psk on client, static opaque on server, no callback, EMS, SHA384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9154 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9155 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9156 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9157 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9158 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9159 -c "session hash for extended master secret"\
9160 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9161 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9162 -S "SSL - Unknown identity received" \
9163 -S "SSL - Verification of the message MAC failed"
9164
9165requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9166run_test "PSK callback: raw rsa-psk on client, static opaque on server, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9167 "$P_SRV extended_ms=0 debug_level=5 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9168 "$P_CLI extended_ms=0 debug_level=5 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9169 psk_identity=foo psk=73776f726466697368" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9170 0 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9171 -C "session hash for extended master secret"\
9172 -S "session hash for extended master secret"\
9173 -S "SSL - The handshake negotiation failed" \
9174 -S "SSL - Unknown identity received" \
9175 -S "SSL - Verification of the message MAC failed"
9176
9177requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9178run_test "PSK callback: raw rsa-psk on client, static opaque on server, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9179 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9180 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9181 psk_identity=foo psk=73776f726466697368" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9182 0 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9183 -C "session hash for extended master secret"\
9184 -S "session hash for extended master secret"\
9185 -S "SSL - The handshake negotiation failed" \
9186 -S "SSL - Unknown identity received" \
9187 -S "SSL - Verification of the message MAC failed"
9188
9189requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9190run_test "PSK callback: raw rsa-psk on client, static opaque on server, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9191 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9192 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9193 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9194 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9195 0 \
9196 -c "session hash for extended master secret"\
9197 -s "session hash for extended master secret"\
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9198 -S "SSL - The handshake negotiation failed" \
9199 -S "SSL - Unknown identity received" \
9200 -S "SSL - Verification of the message MAC failed"
9201
9202requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9203run_test "PSK callback: raw rsa-psk on client, static opaque on server, no callback, EMS, SHA384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9204 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9205 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9206 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9207 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9208 0 \
9209 -c "session hash for extended master secret"\
9210 -s "session hash for extended master secret"\
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9211 -S "SSL - The handshake negotiation failed" \
9212 -S "SSL - Unknown identity received" \
9213 -S "SSL - Verification of the message MAC failed"
9214
9215requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9216run_test "PSK callback: raw ecdhe-psk on client, static opaque on server, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9217 "$P_SRV extended_ms=0 debug_level=5 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9218 "$P_CLI extended_ms=0 debug_level=5 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9219 psk_identity=foo psk=73776f726466697368" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9220 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9221 -C "session hash for extended master secret"\
9222 -S "session hash for extended master secret"\
9223 -S "SSL - The handshake negotiation failed" \
9224 -S "SSL - Unknown identity received" \
9225 -S "SSL - Verification of the message MAC failed"
9226
9227requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9228run_test "PSK callback: raw ecdhe-psk on client, static opaque on server, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9229 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9230 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9231 psk_identity=foo psk=73776f726466697368" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9232 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9233 -C "session hash for extended master secret"\
9234 -S "session hash for extended master secret"\
9235 -S "SSL - The handshake negotiation failed" \
9236 -S "SSL - Unknown identity received" \
9237 -S "SSL - Verification of the message MAC failed"
9238
9239requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9240run_test "PSK callback: raw ecdhe-psk on client, static opaque on server, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9241 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9242 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9243 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9244 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9245 0 \
9246 -c "session hash for extended master secret"\
9247 -s "session hash for extended master secret"\
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9248 -S "SSL - The handshake negotiation failed" \
9249 -S "SSL - Unknown identity received" \
9250 -S "SSL - Verification of the message MAC failed"
9251
9252requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9253run_test "PSK callback: raw ecdhe-psk on client, static opaque on server, no callback, EMS, SHA384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9254 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9255 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9256 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9257 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9258 0 \
9259 -c "session hash for extended master secret"\
9260 -s "session hash for extended master secret"\
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9261 -S "SSL - The handshake negotiation failed" \
9262 -S "SSL - Unknown identity received" \
9263 -S "SSL - Verification of the message MAC failed"
9264
9265requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9266run_test "PSK callback: raw dhe-psk on client, static opaque on server, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9267 "$P_SRV extended_ms=0 debug_level=5 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9268 "$P_CLI extended_ms=0 debug_level=5 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9269 psk_identity=foo psk=73776f726466697368" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9270 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9271 -C "session hash for extended master secret"\
9272 -S "session hash for extended master secret"\
9273 -S "SSL - The handshake negotiation failed" \
9274 -S "SSL - Unknown identity received" \
9275 -S "SSL - Verification of the message MAC failed"
9276
9277requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9278run_test "PSK callback: raw dhe-psk on client, static opaque on server, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9279 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9280 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9281 psk_identity=foo psk=73776f726466697368" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9282 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9283 -C "session hash for extended master secret"\
9284 -S "session hash for extended master secret"\
9285 -S "SSL - The handshake negotiation failed" \
9286 -S "SSL - Unknown identity received" \
9287 -S "SSL - Verification of the message MAC failed"
9288
9289requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9290run_test "PSK callback: raw dhe-psk on client, static opaque on server, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9291 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9292 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9293 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9294 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9295 0 \
9296 -c "session hash for extended master secret"\
9297 -s "session hash for extended master secret"\
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9298 -S "SSL - The handshake negotiation failed" \
9299 -S "SSL - Unknown identity received" \
9300 -S "SSL - Verification of the message MAC failed"
9301
9302requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9303run_test "PSK callback: raw dhe-psk on client, static opaque on server, no callback, EMS, SHA384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9304 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9305 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9306 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9307 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9308 0 \
9309 -c "session hash for extended master secret"\
9310 -s "session hash for extended master secret"\
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9311 -S "SSL - The handshake negotiation failed" \
9312 -S "SSL - Unknown identity received" \
9313 -S "SSL - Verification of the message MAC failed"
9314
9315requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9316run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9317 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
9318 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9319 psk_identity=def psk=beef" \
9320 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9321 -C "session hash for extended master secret"\
9322 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9323 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9324 -S "SSL - Unknown identity received" \
9325 -S "SSL - Verification of the message MAC failed"
9326
9327requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9328run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback, SHA-384" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9329 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384" \
9330 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9331 psk_identity=def psk=beef" \
9332 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9333 -C "session hash for extended master secret"\
9334 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9335 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9336 -S "SSL - Unknown identity received" \
9337 -S "SSL - Verification of the message MAC failed"
9338
9339requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9340run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback, EMS" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9341 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9342 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9343 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9344 psk_identity=abc psk=dead extended_ms=1" \
9345 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9346 -c "session hash for extended master secret"\
9347 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9348 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9349 -S "SSL - Unknown identity received" \
9350 -S "SSL - Verification of the message MAC failed"
9351
9352requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9353run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback, EMS, SHA384" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9354 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9355 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9356 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9357 psk_identity=abc psk=dead extended_ms=1" \
9358 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9359 -c "session hash for extended master secret"\
9360 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9361 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9362 -S "SSL - Unknown identity received" \
9363 -S "SSL - Verification of the message MAC failed"
9364
9365requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9366run_test "PSK callback: raw rsa-psk on client, no static RSA-PSK on server, opaque RSA-PSK from callback" \
9367 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA" \
9368 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
9369 psk_identity=def psk=beef" \
9370 0 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9371 -C "session hash for extended master secret"\
9372 -S "session hash for extended master secret"\
9373 -S "SSL - The handshake negotiation failed" \
9374 -S "SSL - Unknown identity received" \
9375 -S "SSL - Verification of the message MAC failed"
9376
9377requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9378run_test "PSK callback: raw rsa-psk on client, no static RSA-PSK on server, opaque RSA-PSK from callback, SHA-384" \
9379 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384" \
9380 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
9381 psk_identity=def psk=beef" \
9382 0 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9383 -C "session hash for extended master secret"\
9384 -S "session hash for extended master secret"\
9385 -S "SSL - The handshake negotiation failed" \
9386 -S "SSL - Unknown identity received" \
9387 -S "SSL - Verification of the message MAC failed"
9388
9389requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9390run_test "PSK callback: raw rsa-psk on client, no static RSA-PSK on server, opaque RSA-PSK from callback, EMS" \
9391 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9392 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9393 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
9394 psk_identity=abc psk=dead extended_ms=1" \
9395 0 \
9396 -c "session hash for extended master secret"\
9397 -s "session hash for extended master secret"\
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9398 -S "SSL - The handshake negotiation failed" \
9399 -S "SSL - Unknown identity received" \
9400 -S "SSL - Verification of the message MAC failed"
9401
9402requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9403run_test "PSK callback: raw rsa-psk on client, no static RSA-PSK on server, opaque RSA-PSK from callback, EMS, SHA384" \
9404 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9405 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9406 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
9407 psk_identity=abc psk=dead extended_ms=1" \
9408 0 \
9409 -c "session hash for extended master secret"\
9410 -s "session hash for extended master secret"\
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9411 -S "SSL - The handshake negotiation failed" \
9412 -S "SSL - Unknown identity received" \
9413 -S "SSL - Verification of the message MAC failed"
9414
9415requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9416run_test "PSK callback: raw ecdhe-psk on client, no static ECDHE-PSK on server, opaque ECDHE-PSK from callback" \
9417 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA" \
9418 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
9419 psk_identity=def psk=beef" \
9420 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9421 -C "session hash for extended master secret"\
9422 -S "session hash for extended master secret"\
9423 -S "SSL - The handshake negotiation failed" \
9424 -S "SSL - Unknown identity received" \
9425 -S "SSL - Verification of the message MAC failed"
9426
9427requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9428run_test "PSK callback: raw ecdhe-psk on client, no static ECDHE-PSK on server, opaque ECDHE-PSK from callback, SHA-384" \
9429 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384" \
9430 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
9431 psk_identity=def psk=beef" \
9432 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9433 -C "session hash for extended master secret"\
9434 -S "session hash for extended master secret"\
9435 -S "SSL - The handshake negotiation failed" \
9436 -S "SSL - Unknown identity received" \
9437 -S "SSL - Verification of the message MAC failed"
9438
9439requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9440run_test "PSK callback: raw ecdhe-psk on client, no static ECDHE-PSK on server, opaque ECDHE-PSK from callback, EMS" \
9441 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9442 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9443 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
9444 psk_identity=abc psk=dead extended_ms=1" \
9445 0 \
9446 -c "session hash for extended master secret"\
9447 -s "session hash for extended master secret"\
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9448 -S "SSL - The handshake negotiation failed" \
9449 -S "SSL - Unknown identity received" \
9450 -S "SSL - Verification of the message MAC failed"
9451
9452requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9453run_test "PSK callback: raw ecdhe-psk on client, no static ECDHE-PSK on server, opaque ECDHE-PSK from callback, EMS, SHA384" \
9454 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9455 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9456 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
9457 psk_identity=abc psk=dead extended_ms=1" \
9458 0 \
9459 -c "session hash for extended master secret"\
9460 -s "session hash for extended master secret"\
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9461 -S "SSL - The handshake negotiation failed" \
9462 -S "SSL - Unknown identity received" \
9463 -S "SSL - Verification of the message MAC failed"
9464
9465requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9466run_test "PSK callback: raw dhe-psk on client, no static DHE-PSK on server, opaque DHE-PSK from callback" \
9467 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA" \
9468 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
9469 psk_identity=def psk=beef" \
9470 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9471 -C "session hash for extended master secret"\
9472 -S "session hash for extended master secret"\
9473 -S "SSL - The handshake negotiation failed" \
9474 -S "SSL - Unknown identity received" \
9475 -S "SSL - Verification of the message MAC failed"
9476
9477requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9478run_test "PSK callback: raw dhe-psk on client, no static DHE-PSK on server, opaque DHE-PSK from callback, SHA-384" \
9479 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384" \
9480 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
9481 psk_identity=def psk=beef" \
9482 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9483 -C "session hash for extended master secret"\
9484 -S "session hash for extended master secret"\
9485 -S "SSL - The handshake negotiation failed" \
9486 -S "SSL - Unknown identity received" \
9487 -S "SSL - Verification of the message MAC failed"
9488
9489requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9490run_test "PSK callback: raw dhe-psk on client, no static DHE-PSK on server, opaque DHE-PSK from callback, EMS" \
9491 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9492 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9493 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
9494 psk_identity=abc psk=dead extended_ms=1" \
9495 0 \
9496 -c "session hash for extended master secret"\
9497 -s "session hash for extended master secret"\
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9498 -S "SSL - The handshake negotiation failed" \
9499 -S "SSL - Unknown identity received" \
9500 -S "SSL - Verification of the message MAC failed"
9501
9502requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9503run_test "PSK callback: raw dhe-psk on client, no static DHE-PSK on server, opaque DHE-PSK from callback, EMS, SHA384" \
9504 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9505 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9506 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
9507 psk_identity=abc psk=dead extended_ms=1" \
9508 0 \
9509 -c "session hash for extended master secret"\
9510 -s "session hash for extended master secret"\
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9511 -S "SSL - The handshake negotiation failed" \
9512 -S "SSL - Unknown identity received" \
9513 -S "SSL - Verification of the message MAC failed"
9514
9515requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9516run_test "PSK callback: raw psk on client, mismatching static raw PSK on server, opaque PSK from callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9517 "$P_SRV extended_ms=0 psk_identity=foo psk=73776f726466697368 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9518 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9519 psk_identity=def psk=beef" \
9520 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9521 -C "session hash for extended master secret"\
9522 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9523 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9524 -S "SSL - Unknown identity received" \
9525 -S "SSL - Verification of the message MAC failed"
9526
9527requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9528run_test "PSK callback: raw psk on client, mismatching static opaque PSK on server, opaque PSK from callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9529 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=foo psk=73776f726466697368 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9530 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9531 psk_identity=def psk=beef" \
9532 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9533 -C "session hash for extended master secret"\
9534 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9535 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9536 -S "SSL - Unknown identity received" \
9537 -S "SSL - Verification of the message MAC failed"
9538
9539requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9540run_test "PSK callback: raw psk on client, mismatching static opaque PSK on server, raw PSK from callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9541 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=foo psk=73776f726466697368 debug_level=3 psk_list=abc,dead,def,beef min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9542 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9543 psk_identity=def psk=beef" \
9544 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9545 -C "session hash for extended master secret"\
9546 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9547 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9548 -S "SSL - Unknown identity received" \
9549 -S "SSL - Verification of the message MAC failed"
9550
9551requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9552run_test "PSK callback: raw psk on client, id-matching but wrong raw PSK on server, opaque PSK from callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9553 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=def psk=73776f726466697368 debug_level=3 psk_list=abc,dead,def,beef min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9554 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9555 psk_identity=def psk=beef" \
9556 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9557 -C "session hash for extended master secret"\
9558 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9559 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9560 -S "SSL - Unknown identity received" \
9561 -S "SSL - Verification of the message MAC failed"
9562
9563requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9564run_test "PSK callback: raw psk on client, matching opaque PSK on server, wrong opaque PSK from callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9565 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=def psk=beef debug_level=3 psk_list=abc,dead,def,73776f726466697368 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9566 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9567 psk_identity=def psk=beef" \
9568 1 \
9569 -s "SSL - Verification of the message MAC failed"
9570
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9571run_test "PSK callback: no psk, no callback" \
Manuel Pégourié-Gonnard10c3c9f2014-06-10 15:28:52 +0200[diff] [blame]9572 "$P_SRV" \
9573 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9574 psk_identity=foo psk=73776f726466697368" \
Manuel Pégourié-Gonnard10c3c9f2014-06-10 15:28:52 +0200[diff] [blame]9575 1 \
Dave Rodgman6ce10be2021-06-29 14:20:31 +0100[diff] [blame]9576 -s "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9577 -S "SSL - Unknown identity received" \
9578 -S "SSL - Verification of the message MAC failed"
9579
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9580run_test "PSK callback: callback overrides other settings" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9581 "$P_SRV psk=73776f726466697368 psk_identity=foo psk_list=abc,dead,def,beef" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9582 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9583 psk_identity=foo psk=73776f726466697368" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9584 1 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9585 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9586 -s "SSL - Unknown identity received" \
9587 -S "SSL - Verification of the message MAC failed"
9588
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9589run_test "PSK callback: first id matches" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9590 "$P_SRV psk_list=abc,dead,def,beef" \
9591 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
9592 psk_identity=abc psk=dead" \
9593 0 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9594 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9595 -S "SSL - Unknown identity received" \
9596 -S "SSL - Verification of the message MAC failed"
9597
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9598run_test "PSK callback: second id matches" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9599 "$P_SRV psk_list=abc,dead,def,beef" \
9600 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
9601 psk_identity=def psk=beef" \
9602 0 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9603 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9604 -S "SSL - Unknown identity received" \
9605 -S "SSL - Verification of the message MAC failed"
9606
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9607run_test "PSK callback: no match" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9608 "$P_SRV psk_list=abc,dead,def,beef" \
9609 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
9610 psk_identity=ghi psk=beef" \
9611 1 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9612 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9613 -s "SSL - Unknown identity received" \
9614 -S "SSL - Verification of the message MAC failed"
9615
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9616run_test "PSK callback: wrong key" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9617 "$P_SRV psk_list=abc,dead,def,beef" \
9618 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
9619 psk_identity=abc psk=beef" \
9620 1 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9621 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9622 -S "SSL - Unknown identity received" \
9623 -s "SSL - Verification of the message MAC failed"
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]9624
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9625# Tests for EC J-PAKE
9626
Hanno Beckerfa452c42020-08-14 15:42:49 +0100[diff] [blame]9627requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]9628requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9629run_test "ECJPAKE: client not configured" \
9630 "$P_SRV debug_level=3" \
9631 "$P_CLI debug_level=3" \
9632 0 \
Hanno Beckeree63af62020-08-14 15:41:23 +0100[diff] [blame]9633 -C "add ciphersuite: 0xc0ff" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9634 -C "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9635 -S "found ecjpake kkpp extension" \
9636 -S "skip ecjpake kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9637 -S "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]9638 -S "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]9639 -C "found ecjpake_kkpp extension" \
Dave Rodgman737237f2021-06-29 19:07:57 +0100[diff] [blame]9640 -S "SSL - The handshake negotiation failed"
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9641
Hanno Beckerfa452c42020-08-14 15:42:49 +0100[diff] [blame]9642requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9643run_test "ECJPAKE: server not configured" \
9644 "$P_SRV debug_level=3" \
9645 "$P_CLI debug_level=3 ecjpake_pw=bla \
9646 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9647 1 \
Ronald Cron7320e642022-03-08 13:34:49 +0100[diff] [blame]9648 -c "add ciphersuite: c0ff" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9649 -c "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9650 -s "found ecjpake kkpp extension" \
9651 -s "skip ecjpake kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9652 -s "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]9653 -S "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]9654 -C "found ecjpake_kkpp extension" \
Dave Rodgman737237f2021-06-29 19:07:57 +0100[diff] [blame]9655 -s "SSL - The handshake negotiation failed"
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9656
Valerio Settif11e05a2022-12-07 15:41:05 +0100[diff] [blame]9657# Note: if the name of this test is changed, then please adjust the corresponding
9658# filtering label in "test_tls1_2_ecjpake_compatibility" (in "all.sh")
Hanno Beckerfa452c42020-08-14 15:42:49 +0100[diff] [blame]9659requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9660run_test "ECJPAKE: working, TLS" \
9661 "$P_SRV debug_level=3 ecjpake_pw=bla" \
9662 "$P_CLI debug_level=3 ecjpake_pw=bla \
9663 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
Manuel Pégourié-Gonnard0f1660a2015-09-16 22:41:06 +0200[diff] [blame]9664 0 \
Ronald Cron7320e642022-03-08 13:34:49 +0100[diff] [blame]9665 -c "add ciphersuite: c0ff" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9666 -c "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]9667 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9668 -s "found ecjpake kkpp extension" \
9669 -S "skip ecjpake kkpp extension" \
9670 -S "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]9671 -s "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]9672 -c "found ecjpake_kkpp extension" \
Dave Rodgman737237f2021-06-29 19:07:57 +0100[diff] [blame]9673 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9674 -S "SSL - Verification of the message MAC failed"
9675
Valerio Settid572a822022-11-28 18:27:51 +0100[diff] [blame]9676requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Valerio Settia6b69da2022-11-30 16:44:49 +0100[diff] [blame]9677requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Valerio Setti70e02902022-12-02 16:21:56 +0100[diff] [blame]9678run_test "ECJPAKE: opaque password client+server, working, TLS" \
Valerio Settid572a822022-11-28 18:27:51 +0100[diff] [blame]9679 "$P_SRV debug_level=3 ecjpake_pw=bla ecjpake_pw_opaque=1" \
9680 "$P_CLI debug_level=3 ecjpake_pw=bla ecjpake_pw_opaque=1\
9681 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9682 0 \
9683 -c "add ciphersuite: c0ff" \
9684 -c "adding ecjpake_kkpp extension" \
Valerio Setti661b9bc2022-11-29 17:19:25 +0100[diff] [blame]9685 -c "using opaque password" \
9686 -s "using opaque password" \
Valerio Settid572a822022-11-28 18:27:51 +0100[diff] [blame]9687 -C "re-using cached ecjpake parameters" \
9688 -s "found ecjpake kkpp extension" \
9689 -S "skip ecjpake kkpp extension" \
9690 -S "ciphersuite mismatch: ecjpake not configured" \
9691 -s "server hello, ecjpake kkpp extension" \
9692 -c "found ecjpake_kkpp extension" \
9693 -S "SSL - The handshake negotiation failed" \
9694 -S "SSL - Verification of the message MAC failed"
9695
Valerio Settif11e05a2022-12-07 15:41:05 +0100[diff] [blame]9696# Note: if the name of this test is changed, then please adjust the corresponding
9697# filtering label in "test_tls1_2_ecjpake_compatibility" (in "all.sh")
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9698requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
9699requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Valerio Setti70e02902022-12-02 16:21:56 +0100[diff] [blame]9700run_test "ECJPAKE: opaque password client only, working, TLS" \
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9701 "$P_SRV debug_level=3 ecjpake_pw=bla" \
9702 "$P_CLI debug_level=3 ecjpake_pw=bla ecjpake_pw_opaque=1\
9703 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9704 0 \
9705 -c "add ciphersuite: c0ff" \
9706 -c "adding ecjpake_kkpp extension" \
9707 -c "using opaque password" \
9708 -S "using opaque password" \
9709 -C "re-using cached ecjpake parameters" \
9710 -s "found ecjpake kkpp extension" \
9711 -S "skip ecjpake kkpp extension" \
9712 -S "ciphersuite mismatch: ecjpake not configured" \
9713 -s "server hello, ecjpake kkpp extension" \
9714 -c "found ecjpake_kkpp extension" \
9715 -S "SSL - The handshake negotiation failed" \
9716 -S "SSL - Verification of the message MAC failed"
9717
Valerio Settif11e05a2022-12-07 15:41:05 +0100[diff] [blame]9718# Note: if the name of this test is changed, then please adjust the corresponding
9719# filtering label in "test_tls1_2_ecjpake_compatibility" (in "all.sh")
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9720requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
9721requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Valerio Setti70e02902022-12-02 16:21:56 +0100[diff] [blame]9722run_test "ECJPAKE: opaque password server only, working, TLS" \
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9723 "$P_SRV debug_level=3 ecjpake_pw=bla ecjpake_pw_opaque=1" \
9724 "$P_CLI debug_level=3 ecjpake_pw=bla\
9725 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9726 0 \
9727 -c "add ciphersuite: c0ff" \
9728 -c "adding ecjpake_kkpp extension" \
9729 -C "using opaque password" \
9730 -s "using opaque password" \
9731 -C "re-using cached ecjpake parameters" \
9732 -s "found ecjpake kkpp extension" \
9733 -S "skip ecjpake kkpp extension" \
9734 -S "ciphersuite mismatch: ecjpake not configured" \
9735 -s "server hello, ecjpake kkpp extension" \
9736 -c "found ecjpake_kkpp extension" \
9737 -S "SSL - The handshake negotiation failed" \
9738 -S "SSL - Verification of the message MAC failed"
9739
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]9740server_needs_more_time 1
Dave Rodgmanbec7caf2021-06-29 19:05:34 +0100[diff] [blame]9741requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9742run_test "ECJPAKE: password mismatch, TLS" \
9743 "$P_SRV debug_level=3 ecjpake_pw=bla" \
9744 "$P_CLI debug_level=3 ecjpake_pw=bad \
9745 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9746 1 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]9747 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9748 -s "SSL - Verification of the message MAC failed"
9749
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9750server_needs_more_time 1
9751requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
9752requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9753run_test "ECJPAKE_OPAQUE_PW: opaque password mismatch, TLS" \
9754 "$P_SRV debug_level=3 ecjpake_pw=bla ecjpake_pw_opaque=1" \
9755 "$P_CLI debug_level=3 ecjpake_pw=bad ecjpake_pw_opaque=1 \
9756 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9757 1 \
9758 -c "using opaque password" \
9759 -s "using opaque password" \
9760 -C "re-using cached ecjpake parameters" \
9761 -s "SSL - Verification of the message MAC failed"
9762
Dave Rodgmanbec7caf2021-06-29 19:05:34 +0100[diff] [blame]9763requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9764run_test "ECJPAKE: working, DTLS" \
9765 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla" \
9766 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bla \
9767 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9768 0 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]9769 -c "re-using cached ecjpake parameters" \
9770 -S "SSL - Verification of the message MAC failed"
9771
Dave Rodgmanbec7caf2021-06-29 19:05:34 +0100[diff] [blame]9772requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]9773run_test "ECJPAKE: working, DTLS, no cookie" \
9774 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla cookies=0" \
9775 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bla \
9776 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9777 0 \
9778 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9779 -S "SSL - Verification of the message MAC failed"
9780
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]9781server_needs_more_time 1
Dave Rodgmanbec7caf2021-06-29 19:05:34 +0100[diff] [blame]9782requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9783run_test "ECJPAKE: password mismatch, DTLS" \
9784 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla" \
9785 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bad \
9786 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9787 1 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]9788 -c "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9789 -s "SSL - Verification of the message MAC failed"
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9790
Manuel Pégourié-Gonnardca700b22015-10-20 14:47:00 +0200[diff] [blame]9791# for tests with configs/config-thread.h
Dave Rodgmanbec7caf2021-06-29 19:05:34 +0100[diff] [blame]9792requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnardca700b22015-10-20 14:47:00 +0200[diff] [blame]9793run_test "ECJPAKE: working, DTLS, nolog" \
9794 "$P_SRV dtls=1 ecjpake_pw=bla" \
9795 "$P_CLI dtls=1 ecjpake_pw=bla \
9796 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9797 0
9798
Manuel Pégourié-Gonnard4cc8c632015-07-23 12:24:03 +0200[diff] [blame]9799# Test for ClientHello without extensions
9800
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]9801# Without extensions, ECC is impossible (no curve negotiation).
9802requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnardd55bc202015-08-04 16:22:30 +0200[diff] [blame]9803requires_gnutls
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]9804run_test "ClientHello without extensions: RSA" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]9805 "$P_SRV force_version=tls12 debug_level=3" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]9806 "$G_CLI --priority=NORMAL:%NO_EXTENSIONS:%DISABLE_SAFE_RENEGOTIATION localhost" \
Gilles Peskine5d2511c2017-05-12 13:16:40 +0200[diff] [blame]9807 0 \
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]9808 -s "Ciphersuite is .*-RSA-WITH-.*" \
9809 -S "Ciphersuite is .*-EC.*" \
9810 -s "dumping 'client hello extensions' (0 bytes)"
9811
Gilles Peskinef2876912024-05-13 21:18:41 +0200[diff] [blame]9812requires_config_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]9813requires_gnutls
9814run_test "ClientHello without extensions: PSK" \
9815 "$P_SRV force_version=tls12 debug_level=3 psk=73776f726466697368" \
9816 "$G_CLI --priority=NORMAL:+PSK:-RSA:-DHE-RSA:%NO_EXTENSIONS:%DISABLE_SAFE_RENEGOTIATION --pskusername=Client_identity --pskkey=73776f726466697368 localhost" \
9817 0 \
9818 -s "Ciphersuite is .*-PSK-.*" \
9819 -S "Ciphersuite is .*-EC.*" \
Gilles Peskine5d2511c2017-05-12 13:16:40 +0200[diff] [blame]9820 -s "dumping 'client hello extensions' (0 bytes)"
9821
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]9822# Tests for mbedtls_ssl_get_bytes_avail()
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]9823
Gilles Peskined2d90af2022-04-06 23:35:56 +0200[diff] [blame]9824# The server first reads buffer_size-1 bytes, then reads the remainder.
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]9825requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]9826run_test "mbedtls_ssl_get_bytes_avail: no extra data" \
Gilles Peskined2d90af2022-04-06 23:35:56 +0200[diff] [blame]9827 "$P_SRV buffer_size=100" \
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]9828 "$P_CLI request_size=100" \
9829 0 \
9830 -s "Read from client: 100 bytes read$"
9831
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]9832requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskined2d90af2022-04-06 23:35:56 +0200[diff] [blame]9833run_test "mbedtls_ssl_get_bytes_avail: extra data (+1)" \
9834 "$P_SRV buffer_size=100" \
9835 "$P_CLI request_size=101" \
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]9836 0 \
Gilles Peskined2d90af2022-04-06 23:35:56 +0200[diff] [blame]9837 -s "Read from client: 101 bytes read (100 + 1)"
9838
9839requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
9840requires_max_content_len 200
9841run_test "mbedtls_ssl_get_bytes_avail: extra data (*2)" \
9842 "$P_SRV buffer_size=100" \
9843 "$P_CLI request_size=200" \
9844 0 \
9845 -s "Read from client: 200 bytes read (100 + 100)"
9846
9847requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
9848run_test "mbedtls_ssl_get_bytes_avail: extra data (max)" \
Waleed Elmelegybae705c2024-01-01 14:21:21 +0000[diff] [blame]9849 "$P_SRV buffer_size=100 force_version=tls12" \
Gilles Peskined2d90af2022-04-06 23:35:56 +0200[diff] [blame]9850 "$P_CLI request_size=$MAX_CONTENT_LEN" \
9851 0 \
9852 -s "Read from client: $MAX_CONTENT_LEN bytes read (100 + $((MAX_CONTENT_LEN - 100)))"
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]9853
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9854# Tests for small client packets
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]9855
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9856run_test "Small client packet TLS 1.2 BlockCipher" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9857 "$P_SRV force_version=tls12" \
9858 "$P_CLI request_size=1 \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]9859 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9860 0 \
9861 -s "Read from client: 1 bytes read"
9862
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9863run_test "Small client packet TLS 1.2 BlockCipher, without EtM" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9864 "$P_SRV force_version=tls12" \
9865 "$P_CLI request_size=1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]9866 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]9867 0 \
9868 -s "Read from client: 1 bytes read"
9869
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9870run_test "Small client packet TLS 1.2 BlockCipher larger MAC" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9871 "$P_SRV force_version=tls12" \
9872 "$P_CLI request_size=1 \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]9873 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]9874 0 \
9875 -s "Read from client: 1 bytes read"
9876
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9877run_test "Small client packet TLS 1.2 AEAD" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9878 "$P_SRV force_version=tls12" \
9879 "$P_CLI request_size=1 \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]9880 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
9881 0 \
9882 -s "Read from client: 1 bytes read"
9883
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9884run_test "Small client packet TLS 1.2 AEAD shorter tag" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9885 "$P_SRV force_version=tls12" \
9886 "$P_CLI request_size=1 \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]9887 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
9888 0 \
9889 -s "Read from client: 1 bytes read"
9890
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]9891requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9892run_test "Small client packet TLS 1.3 AEAD" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]9893 "$P_SRV" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9894 "$P_CLI request_size=1 \
9895 force_ciphersuite=TLS1-3-AES-128-CCM-SHA256" \
9896 0 \
9897 -s "Read from client: 1 bytes read"
9898
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]9899requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9900run_test "Small client packet TLS 1.3 AEAD shorter tag" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]9901 "$P_SRV" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9902 "$P_CLI request_size=1 \
9903 force_ciphersuite=TLS1-3-AES-128-CCM-8-SHA256" \
9904 0 \
9905 -s "Read from client: 1 bytes read"
9906
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9907# Tests for small client packets in DTLS
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]9908
9909requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9910run_test "Small client packet DTLS 1.2" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9911 "$P_SRV dtls=1 force_version=dtls12" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]9912 "$P_CLI dtls=1 request_size=1 \
9913 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9914 0 \
9915 -s "Read from client: 1 bytes read"
9916
9917requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9918run_test "Small client packet DTLS 1.2, without EtM" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9919 "$P_SRV dtls=1 force_version=dtls12 etm=0" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]9920 "$P_CLI dtls=1 request_size=1 \
9921 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9922 0 \
9923 -s "Read from client: 1 bytes read"
9924
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9925# Tests for small server packets
9926
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9927run_test "Small server packet TLS 1.2 BlockCipher" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9928 "$P_SRV response_size=1 force_version=tls12" \
9929 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9930 0 \
9931 -c "Read from server: 1 bytes read"
9932
9933run_test "Small server packet TLS 1.2 BlockCipher, without EtM" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9934 "$P_SRV response_size=1 force_version=tls12" \
9935 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9936 0 \
9937 -c "Read from server: 1 bytes read"
9938
9939run_test "Small server packet TLS 1.2 BlockCipher larger MAC" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9940 "$P_SRV response_size=1 force_version=tls12" \
9941 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9942 0 \
9943 -c "Read from server: 1 bytes read"
9944
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9945run_test "Small server packet TLS 1.2 AEAD" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9946 "$P_SRV response_size=1 force_version=tls12" \
9947 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9948 0 \
9949 -c "Read from server: 1 bytes read"
9950
9951run_test "Small server packet TLS 1.2 AEAD shorter tag" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9952 "$P_SRV response_size=1 force_version=tls12" \
9953 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9954 0 \
9955 -c "Read from server: 1 bytes read"
9956
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]9957requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9958run_test "Small server packet TLS 1.3 AEAD" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]9959 "$P_SRV response_size=1" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9960 "$P_CLI force_ciphersuite=TLS1-3-AES-128-CCM-SHA256" \
9961 0 \
9962 -c "Read from server: 1 bytes read"
9963
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]9964requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9965run_test "Small server packet TLS 1.3 AEAD shorter tag" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]9966 "$P_SRV response_size=1" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9967 "$P_CLI force_ciphersuite=TLS1-3-AES-128-CCM-8-SHA256" \
9968 0 \
9969 -c "Read from server: 1 bytes read"
9970
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9971# Tests for small server packets in DTLS
9972
9973requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9974run_test "Small server packet DTLS 1.2" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9975 "$P_SRV dtls=1 response_size=1 force_version=dtls12" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9976 "$P_CLI dtls=1 \
9977 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9978 0 \
9979 -c "Read from server: 1 bytes read"
9980
9981requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9982run_test "Small server packet DTLS 1.2, without EtM" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9983 "$P_SRV dtls=1 response_size=1 force_version=dtls12 etm=0" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9984 "$P_CLI dtls=1 \
9985 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9986 0 \
9987 -c "Read from server: 1 bytes read"
9988
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]9989# Test for large client packets
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9990
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]9991# How many fragments do we expect to write $1 bytes?
9992fragments_for_write() {
9993 echo "$(( ( $1 + $MAX_OUT_LEN - 1 ) / $MAX_OUT_LEN ))"
9994}
9995
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]9996run_test "Large client packet TLS 1.2 BlockCipher" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9997 "$P_SRV force_version=tls12" \
9998 "$P_CLI request_size=16384 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9999 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
10000 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]10001 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
10002 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]10003
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10004run_test "Large client packet TLS 1.2 BlockCipher, without EtM" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10005 "$P_SRV force_version=tls12" \
10006 "$P_CLI request_size=16384 etm=0 \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]10007 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
10008 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]10009 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]10010
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10011run_test "Large client packet TLS 1.2 BlockCipher larger MAC" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10012 "$P_SRV force_version=tls12" \
10013 "$P_CLI request_size=16384 \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]10014 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]10015 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]10016 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
10017 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]10018
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10019run_test "Large client packet TLS 1.2 AEAD" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10020 "$P_SRV force_version=tls12" \
10021 "$P_CLI request_size=16384 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]10022 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
10023 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]10024 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
10025 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]10026
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10027run_test "Large client packet TLS 1.2 AEAD shorter tag" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10028 "$P_SRV force_version=tls12" \
10029 "$P_CLI request_size=16384 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]10030 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
10031 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]10032 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
10033 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]10034
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]10035requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10036run_test "Large client packet TLS 1.3 AEAD" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]10037 "$P_SRV" \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10038 "$P_CLI request_size=16383 \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10039 force_ciphersuite=TLS1-3-AES-128-CCM-SHA256" \
10040 0 \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10041 -c "16383 bytes written in $(fragments_for_write 16383) fragments" \
10042 -s "Read from client: 16383 bytes read"
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10043
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]10044requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10045run_test "Large client packet TLS 1.3 AEAD shorter tag" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]10046 "$P_SRV" \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10047 "$P_CLI request_size=16383 \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10048 force_ciphersuite=TLS1-3-AES-128-CCM-8-SHA256" \
10049 0 \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10050 -c "16383 bytes written in $(fragments_for_write 16383) fragments" \
10051 -s "Read from client: 16383 bytes read"
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10052
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]10053# The tests below fail when the server's OUT_CONTENT_LEN is less than 16384.
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10054run_test "Large server packet TLS 1.2 BlockCipher" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10055 "$P_SRV response_size=16384 force_version=tls12" \
10056 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10057 0 \
10058 -c "Read from server: 16384 bytes read"
10059
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]10060run_test "Large server packet TLS 1.2 BlockCipher, without EtM" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10061 "$P_SRV response_size=16384 force_version=tls12" \
10062 "$P_CLI etm=0 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]10063 0 \
10064 -s "16384 bytes written in 1 fragments" \
10065 -c "Read from server: 16384 bytes read"
10066
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10067run_test "Large server packet TLS 1.2 BlockCipher larger MAC" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10068 "$P_SRV response_size=16384 force_version=tls12" \
10069 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10070 0 \
10071 -c "Read from server: 16384 bytes read"
10072
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]10073run_test "Large server packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10074 "$P_SRV response_size=16384 trunc_hmac=1 force_version=tls12" \
10075 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]10076 0 \
10077 -s "16384 bytes written in 1 fragments" \
10078 -c "Read from server: 16384 bytes read"
10079
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10080run_test "Large server packet TLS 1.2 AEAD" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10081 "$P_SRV response_size=16384 force_version=tls12" \
10082 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10083 0 \
10084 -c "Read from server: 16384 bytes read"
10085
10086run_test "Large server packet TLS 1.2 AEAD shorter tag" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10087 "$P_SRV response_size=16384 force_version=tls12" \
10088 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10089 0 \
10090 -c "Read from server: 16384 bytes read"
10091
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]10092requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10093run_test "Large server packet TLS 1.3 AEAD" \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10094 "$P_SRV response_size=16383" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10095 "$P_CLI force_ciphersuite=TLS1-3-AES-128-CCM-SHA256" \
10096 0 \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10097 -c "Read from server: 16383 bytes read"
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10098
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]10099requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10100run_test "Large server packet TLS 1.3 AEAD shorter tag" \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10101 "$P_SRV response_size=16383" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10102 "$P_CLI force_ciphersuite=TLS1-3-AES-128-CCM-8-SHA256" \
10103 0 \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10104 -c "Read from server: 16383 bytes read"
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10105
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10106# Tests for restartable ECC
10107
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10108# Force the use of a curve that supports restartable ECC (secp256r1).
10109
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10110requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10111requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10112run_test "EC restart: TLS, default" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10113 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10114 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10115 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10116 debug_level=1" \
10117 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10118 -C "x509_verify_cert.*4b00" \
10119 -C "mbedtls_pk_verify.*4b00" \
10120 -C "mbedtls_ecdh_make_public.*4b00" \
10121 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10122
10123requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10124requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10125run_test "EC restart: TLS, max_ops=0" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10126 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10127 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10128 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10129 debug_level=1 ec_max_ops=0" \
10130 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10131 -C "x509_verify_cert.*4b00" \
10132 -C "mbedtls_pk_verify.*4b00" \
10133 -C "mbedtls_ecdh_make_public.*4b00" \
10134 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10135
10136requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10137requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10138run_test "EC restart: TLS, max_ops=65535" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10139 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10140 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10141 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10142 debug_level=1 ec_max_ops=65535" \
10143 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10144 -C "x509_verify_cert.*4b00" \
10145 -C "mbedtls_pk_verify.*4b00" \
10146 -C "mbedtls_ecdh_make_public.*4b00" \
10147 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10148
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10149# With USE_PSA disabled we expect full restartable behaviour.
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10150requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10151requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10152requires_config_disabled MBEDTLS_USE_PSA_CRYPTO
10153run_test "EC restart: TLS, max_ops=1000 (no USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10154 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10155 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10156 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10157 debug_level=1 ec_max_ops=1000" \
10158 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10159 -c "x509_verify_cert.*4b00" \
10160 -c "mbedtls_pk_verify.*4b00" \
10161 -c "mbedtls_ecdh_make_public.*4b00" \
10162 -c "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10163
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10164# With USE_PSA enabled we expect only partial restartable behaviour:
10165# everything except ECDH (where TLS calls PSA directly).
10166requires_config_enabled MBEDTLS_ECP_RESTARTABLE
10167requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10168requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
10169run_test "EC restart: TLS, max_ops=1000 (USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10170 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10171 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10172 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10173 debug_level=1 ec_max_ops=1000" \
10174 0 \
10175 -c "x509_verify_cert.*4b00" \
10176 -c "mbedtls_pk_verify.*4b00" \
10177 -C "mbedtls_ecdh_make_public.*4b00" \
10178 -c "mbedtls_pk_sign.*4b00"
10179
10180# This works the same with & without USE_PSA as we never get to ECDH:
10181# we abort as soon as we determined the cert is bad.
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10182requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10183requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10184run_test "EC restart: TLS, max_ops=1000, badsign" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10185 "$P_SRV groups=secp256r1 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10186 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
10187 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10188 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10189 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10190 debug_level=1 ec_max_ops=1000" \
10191 1 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10192 -c "x509_verify_cert.*4b00" \
10193 -C "mbedtls_pk_verify.*4b00" \
10194 -C "mbedtls_ecdh_make_public.*4b00" \
10195 -C "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10196 -c "! The certificate is not correctly signed by the trusted CA" \
10197 -c "! mbedtls_ssl_handshake returned" \
10198 -c "X509 - Certificate verification failed"
10199
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10200# With USE_PSA disabled we expect full restartable behaviour.
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10201requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10202requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10203requires_config_disabled MBEDTLS_USE_PSA_CRYPTO
10204run_test "EC restart: TLS, max_ops=1000, auth_mode=optional badsign (no USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10205 "$P_SRV groups=secp256r1 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10206 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
10207 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10208 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10209 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10210 debug_level=1 ec_max_ops=1000 auth_mode=optional" \
10211 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10212 -c "x509_verify_cert.*4b00" \
10213 -c "mbedtls_pk_verify.*4b00" \
10214 -c "mbedtls_ecdh_make_public.*4b00" \
10215 -c "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10216 -c "! The certificate is not correctly signed by the trusted CA" \
10217 -C "! mbedtls_ssl_handshake returned" \
10218 -C "X509 - Certificate verification failed"
10219
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10220# With USE_PSA enabled we expect only partial restartable behaviour:
10221# everything except ECDH (where TLS calls PSA directly).
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10222requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10223requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10224requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
10225run_test "EC restart: TLS, max_ops=1000, auth_mode=optional badsign (USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10226 "$P_SRV groups=secp256r1 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10227 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
10228 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10229 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10230 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10231 debug_level=1 ec_max_ops=1000 auth_mode=optional" \
10232 0 \
10233 -c "x509_verify_cert.*4b00" \
10234 -c "mbedtls_pk_verify.*4b00" \
10235 -C "mbedtls_ecdh_make_public.*4b00" \
10236 -c "mbedtls_pk_sign.*4b00" \
10237 -c "! The certificate is not correctly signed by the trusted CA" \
10238 -C "! mbedtls_ssl_handshake returned" \
10239 -C "X509 - Certificate verification failed"
10240
10241# With USE_PSA disabled we expect full restartable behaviour.
10242requires_config_enabled MBEDTLS_ECP_RESTARTABLE
10243requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10244requires_config_disabled MBEDTLS_USE_PSA_CRYPTO
10245run_test "EC restart: TLS, max_ops=1000, auth_mode=none badsign (no USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10246 "$P_SRV groups=secp256r1 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10247 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
10248 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10249 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10250 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10251 debug_level=1 ec_max_ops=1000 auth_mode=none" \
10252 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10253 -C "x509_verify_cert.*4b00" \
10254 -c "mbedtls_pk_verify.*4b00" \
10255 -c "mbedtls_ecdh_make_public.*4b00" \
10256 -c "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10257 -C "! The certificate is not correctly signed by the trusted CA" \
10258 -C "! mbedtls_ssl_handshake returned" \
10259 -C "X509 - Certificate verification failed"
10260
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10261# With USE_PSA enabled we expect only partial restartable behaviour:
10262# everything except ECDH (where TLS calls PSA directly).
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10263requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10264requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10265requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
10266run_test "EC restart: TLS, max_ops=1000, auth_mode=none badsign (USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10267 "$P_SRV groups=secp256r1 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10268 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
10269 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10270 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10271 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10272 debug_level=1 ec_max_ops=1000 auth_mode=none" \
10273 0 \
10274 -C "x509_verify_cert.*4b00" \
10275 -c "mbedtls_pk_verify.*4b00" \
10276 -C "mbedtls_ecdh_make_public.*4b00" \
10277 -c "mbedtls_pk_sign.*4b00" \
10278 -C "! The certificate is not correctly signed by the trusted CA" \
10279 -C "! mbedtls_ssl_handshake returned" \
10280 -C "X509 - Certificate verification failed"
10281
10282# With USE_PSA disabled we expect full restartable behaviour.
10283requires_config_enabled MBEDTLS_ECP_RESTARTABLE
10284requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10285requires_config_disabled MBEDTLS_USE_PSA_CRYPTO
10286run_test "EC restart: DTLS, max_ops=1000 (no USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10287 "$P_SRV groups=secp256r1 auth_mode=required dtls=1" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10288 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10289 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10290 dtls=1 debug_level=1 ec_max_ops=1000" \
10291 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10292 -c "x509_verify_cert.*4b00" \
10293 -c "mbedtls_pk_verify.*4b00" \
10294 -c "mbedtls_ecdh_make_public.*4b00" \
10295 -c "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10296
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10297# With USE_PSA enabled we expect only partial restartable behaviour:
10298# everything except ECDH (where TLS calls PSA directly).
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10299requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10300requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10301requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
10302run_test "EC restart: DTLS, max_ops=1000 (USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10303 "$P_SRV groups=secp256r1 auth_mode=required dtls=1" \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10304 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10305 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10306 dtls=1 debug_level=1 ec_max_ops=1000" \
10307 0 \
10308 -c "x509_verify_cert.*4b00" \
10309 -c "mbedtls_pk_verify.*4b00" \
10310 -C "mbedtls_ecdh_make_public.*4b00" \
10311 -c "mbedtls_pk_sign.*4b00"
10312
10313# With USE_PSA disabled we expect full restartable behaviour.
10314requires_config_enabled MBEDTLS_ECP_RESTARTABLE
10315requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10316requires_config_disabled MBEDTLS_USE_PSA_CRYPTO
10317run_test "EC restart: TLS, max_ops=1000 no client auth (no USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10318 "$P_SRV groups=secp256r1" \
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10319 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
10320 debug_level=1 ec_max_ops=1000" \
10321 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10322 -c "x509_verify_cert.*4b00" \
10323 -c "mbedtls_pk_verify.*4b00" \
10324 -c "mbedtls_ecdh_make_public.*4b00" \
10325 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10326
Manuel Pégourié-Gonnard2b7ad642022-12-06 10:42:44 +0100[diff] [blame]10327
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10328# With USE_PSA enabled we expect only partial restartable behaviour:
10329# everything except ECDH (where TLS calls PSA directly).
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10330requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10331requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10332requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
10333run_test "EC restart: TLS, max_ops=1000 no client auth (USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10334 "$P_SRV groups=secp256r1" \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10335 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
10336 debug_level=1 ec_max_ops=1000" \
10337 0 \
10338 -c "x509_verify_cert.*4b00" \
10339 -c "mbedtls_pk_verify.*4b00" \
10340 -C "mbedtls_ecdh_make_public.*4b00" \
10341 -C "mbedtls_pk_sign.*4b00"
10342
Manuel Pégourié-Gonnard2b7ad642022-12-06 10:42:44 +0100[diff] [blame]10343# Restartable is only for ECDHE-ECDSA, with another ciphersuite we expect no
10344# restartable behaviour at all (not even client auth).
10345# This is the same as "EC restart: TLS, max_ops=1000" except with ECDHE-RSA,
10346# and all 4 assertions negated.
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10347requires_config_enabled MBEDTLS_ECP_RESTARTABLE
10348requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard2b7ad642022-12-06 10:42:44 +0100[diff] [blame]10349run_test "EC restart: TLS, max_ops=1000, ECDHE-RSA" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10350 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard2b7ad642022-12-06 10:42:44 +0100[diff] [blame]10351 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10352 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2b7ad642022-12-06 10:42:44 +0100[diff] [blame]10353 debug_level=1 ec_max_ops=1000" \
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10354 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10355 -C "x509_verify_cert.*4b00" \
10356 -C "mbedtls_pk_verify.*4b00" \
10357 -C "mbedtls_ecdh_make_public.*4b00" \
10358 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10359
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10360# Tests of asynchronous private key support in SSL
10361
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10362requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10363run_test "SSL async private: sign, delay=0" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10364 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10365 async_operations=s async_private_delay1=0 async_private_delay2=0" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10366 "$P_CLI" \
10367 0 \
10368 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10369 -s "Async resume (slot [0-9]): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10370
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10371requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10372run_test "SSL async private: sign, delay=1" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10373 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10374 async_operations=s async_private_delay1=1 async_private_delay2=1" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10375 "$P_CLI" \
10376 0 \
10377 -s "Async sign callback: using key slot " \
10378 -s "Async resume (slot [0-9]): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10379 -s "Async resume (slot [0-9]): sign done, status=0"
10380
Gilles Peskine12d0cc12018-04-26 15:06:56 +0200[diff] [blame]10381requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
10382run_test "SSL async private: sign, delay=2" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10383 "$P_SRV force_version=tls12 \
Gilles Peskine12d0cc12018-04-26 15:06:56 +0200[diff] [blame]10384 async_operations=s async_private_delay1=2 async_private_delay2=2" \
10385 "$P_CLI" \
10386 0 \
10387 -s "Async sign callback: using key slot " \
10388 -U "Async sign callback: using key slot " \
10389 -s "Async resume (slot [0-9]): call 1 more times." \
10390 -s "Async resume (slot [0-9]): call 0 more times." \
10391 -s "Async resume (slot [0-9]): sign done, status=0"
10392
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10393requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]10394requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Gilles Peskine807d74a2018-04-30 10:30:49 +0200[diff] [blame]10395run_test "SSL async private: sign, SNI" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10396 "$P_SRV force_version=tls12 debug_level=3 \
Gilles Peskine807d74a2018-04-30 10:30:49 +0200[diff] [blame]10397 async_operations=s async_private_delay1=0 async_private_delay2=0 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10398 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
10399 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Gilles Peskine807d74a2018-04-30 10:30:49 +0200[diff] [blame]10400 "$P_CLI server_name=polarssl.example" \
10401 0 \
10402 -s "Async sign callback: using key slot " \
10403 -s "Async resume (slot [0-9]): sign done, status=0" \
10404 -s "parse ServerName extension" \
10405 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
10406 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
10407
10408requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10409run_test "SSL async private: decrypt, delay=0" \
10410 "$P_SRV \
10411 async_operations=d async_private_delay1=0 async_private_delay2=0" \
10412 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10413 0 \
10414 -s "Async decrypt callback: using key slot " \
10415 -s "Async resume (slot [0-9]): decrypt done, status=0"
10416
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10417requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10418run_test "SSL async private: decrypt, delay=1" \
10419 "$P_SRV \
10420 async_operations=d async_private_delay1=1 async_private_delay2=1" \
10421 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10422 0 \
10423 -s "Async decrypt callback: using key slot " \
10424 -s "Async resume (slot [0-9]): call 0 more times." \
10425 -s "Async resume (slot [0-9]): decrypt done, status=0"
10426
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10427requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10428run_test "SSL async private: decrypt RSA-PSK, delay=0" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]10429 "$P_SRV psk=73776f726466697368 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10430 async_operations=d async_private_delay1=0 async_private_delay2=0" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]10431 "$P_CLI psk=73776f726466697368 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10432 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256" \
10433 0 \
10434 -s "Async decrypt callback: using key slot " \
10435 -s "Async resume (slot [0-9]): decrypt done, status=0"
10436
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10437requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10438run_test "SSL async private: decrypt RSA-PSK, delay=1" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]10439 "$P_SRV psk=73776f726466697368 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10440 async_operations=d async_private_delay1=1 async_private_delay2=1" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]10441 "$P_CLI psk=73776f726466697368 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10442 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256" \
10443 0 \
10444 -s "Async decrypt callback: using key slot " \
10445 -s "Async resume (slot [0-9]): call 0 more times." \
10446 -s "Async resume (slot [0-9]): decrypt done, status=0"
10447
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10448requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10449run_test "SSL async private: sign callback not present" \
10450 "$P_SRV \
10451 async_operations=d async_private_delay1=1 async_private_delay2=1" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10452 "$P_CLI force_version=tls12; [ \$? -eq 1 ] &&
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10453 $P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10454 0 \
10455 -S "Async sign callback" \
10456 -s "! mbedtls_ssl_handshake returned" \
10457 -s "The own private key or pre-shared key is not set, but needed" \
10458 -s "Async resume (slot [0-9]): decrypt done, status=0" \
10459 -s "Successful connection"
10460
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10461requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10462run_test "SSL async private: decrypt callback not present" \
10463 "$P_SRV debug_level=1 \
10464 async_operations=s async_private_delay1=1 async_private_delay2=1" \
10465 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA;
Ronald Cronc5649382023-04-04 15:33:42 +0200[diff] [blame]10466 [ \$? -eq 1 ] && $P_CLI force_version=tls12" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10467 0 \
10468 -S "Async decrypt callback" \
10469 -s "! mbedtls_ssl_handshake returned" \
10470 -s "got no RSA private key" \
10471 -s "Async resume (slot [0-9]): sign done, status=0" \
10472 -s "Successful connection"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10473
10474# key1: ECDSA, key2: RSA; use key1 from slot 0
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10475requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10476run_test "SSL async private: slot 0 used with key1" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10477 "$P_SRV \
10478 async_operations=s async_private_delay1=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10479 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10480 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10481 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
10482 0 \
10483 -s "Async sign callback: using key slot 0," \
10484 -s "Async resume (slot 0): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10485 -s "Async resume (slot 0): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10486
10487# key1: ECDSA, key2: RSA; use key2 from slot 0
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10488requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10489run_test "SSL async private: slot 0 used with key2" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10490 "$P_SRV \
10491 async_operations=s async_private_delay2=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10492 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10493 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10494 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
10495 0 \
10496 -s "Async sign callback: using key slot 0," \
10497 -s "Async resume (slot 0): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10498 -s "Async resume (slot 0): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10499
10500# key1: ECDSA, key2: RSA; use key2 from slot 1
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10501requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinead28bf02018-04-26 00:19:16 +0200[diff] [blame]10502run_test "SSL async private: slot 1 used with key2" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10503 "$P_SRV \
Gilles Peskine168dae82018-04-25 23:35:42 +0200[diff] [blame]10504 async_operations=s async_private_delay1=1 async_private_delay2=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10505 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10506 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10507 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
10508 0 \
10509 -s "Async sign callback: using key slot 1," \
10510 -s "Async resume (slot 1): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10511 -s "Async resume (slot 1): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10512
10513# key1: ECDSA, key2: RSA; use key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10514requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10515run_test "SSL async private: fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10516 "$P_SRV \
10517 async_operations=s async_private_delay1=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10518 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10519 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt " \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10520 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
10521 0 \
10522 -s "Async sign callback: no key matches this certificate."
10523
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10524requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]10525run_test "SSL async private: sign, error in start" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10526 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10527 async_operations=s async_private_delay1=1 async_private_delay2=1 \
10528 async_private_error=1" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10529 "$P_CLI" \
10530 1 \
10531 -s "Async sign callback: injected error" \
10532 -S "Async resume" \
Gilles Peskine37289cd2018-04-27 11:50:14 +0200[diff] [blame]10533 -S "Async cancel" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10534 -s "! mbedtls_ssl_handshake returned"
10535
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10536requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]10537run_test "SSL async private: sign, cancel after start" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10538 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10539 async_operations=s async_private_delay1=1 async_private_delay2=1 \
10540 async_private_error=2" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10541 "$P_CLI" \
10542 1 \
10543 -s "Async sign callback: using key slot " \
10544 -S "Async resume" \
10545 -s "Async cancel"
10546
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10547requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]10548run_test "SSL async private: sign, error in resume" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10549 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10550 async_operations=s async_private_delay1=1 async_private_delay2=1 \
10551 async_private_error=3" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10552 "$P_CLI" \
10553 1 \
10554 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10555 -s "Async resume callback: sign done but injected error" \
Gilles Peskine37289cd2018-04-27 11:50:14 +0200[diff] [blame]10556 -S "Async cancel" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10557 -s "! mbedtls_ssl_handshake returned"
10558
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10559requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]10560run_test "SSL async private: decrypt, error in start" \
10561 "$P_SRV \
10562 async_operations=d async_private_delay1=1 async_private_delay2=1 \
10563 async_private_error=1" \
10564 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10565 1 \
10566 -s "Async decrypt callback: injected error" \
10567 -S "Async resume" \
10568 -S "Async cancel" \
10569 -s "! mbedtls_ssl_handshake returned"
10570
10571requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
10572run_test "SSL async private: decrypt, cancel after start" \
10573 "$P_SRV \
10574 async_operations=d async_private_delay1=1 async_private_delay2=1 \
10575 async_private_error=2" \
10576 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10577 1 \
10578 -s "Async decrypt callback: using key slot " \
10579 -S "Async resume" \
10580 -s "Async cancel"
10581
10582requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
10583run_test "SSL async private: decrypt, error in resume" \
10584 "$P_SRV \
10585 async_operations=d async_private_delay1=1 async_private_delay2=1 \
10586 async_private_error=3" \
10587 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10588 1 \
10589 -s "Async decrypt callback: using key slot " \
10590 -s "Async resume callback: decrypt done but injected error" \
10591 -S "Async cancel" \
10592 -s "! mbedtls_ssl_handshake returned"
10593
10594requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10595run_test "SSL async private: cancel after start then operate correctly" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10596 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10597 async_operations=s async_private_delay1=1 async_private_delay2=1 \
10598 async_private_error=-2" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10599 "$P_CLI; [ \$? -eq 1 ] && $P_CLI" \
10600 0 \
10601 -s "Async cancel" \
10602 -s "! mbedtls_ssl_handshake returned" \
10603 -s "Async resume" \
10604 -s "Successful connection"
10605
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10606requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10607run_test "SSL async private: error in resume then operate correctly" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10608 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10609 async_operations=s async_private_delay1=1 async_private_delay2=1 \
10610 async_private_error=-3" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10611 "$P_CLI; [ \$? -eq 1 ] && $P_CLI" \
10612 0 \
10613 -s "! mbedtls_ssl_handshake returned" \
10614 -s "Async resume" \
10615 -s "Successful connection"
10616
10617# key1: ECDSA, key2: RSA; use key1 through async, then key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10618requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Valerio Setti3f2309f2023-02-23 13:47:30 +0100[diff] [blame]10619# Note: the function "detect_required_features()" is not able to detect more than
10620# one "force_ciphersuite" per client/server and it only picks the 2nd one.
10621# Therefore the 1st one is added explicitly here
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]10622requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10623run_test "SSL async private: cancel after start then fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10624 "$P_SRV \
10625 async_operations=s async_private_delay1=1 async_private_error=-2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10626 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10627 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10628 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256;
10629 [ \$? -eq 1 ] &&
10630 $P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
10631 0 \
Gilles Peskinededa75a2018-04-30 10:02:45 +0200[diff] [blame]10632 -s "Async sign callback: using key slot 0" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10633 -S "Async resume" \
10634 -s "Async cancel" \
10635 -s "! mbedtls_ssl_handshake returned" \
10636 -s "Async sign callback: no key matches this certificate." \
10637 -s "Successful connection"
10638
10639# key1: ECDSA, key2: RSA; use key1 through async, then key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10640requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Valerio Setti3f2309f2023-02-23 13:47:30 +0100[diff] [blame]10641# Note: the function "detect_required_features()" is not able to detect more than
10642# one "force_ciphersuite" per client/server and it only picks the 2nd one.
10643# Therefore the 1st one is added explicitly here
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]10644requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]10645run_test "SSL async private: sign, error in resume then fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10646 "$P_SRV \
10647 async_operations=s async_private_delay1=1 async_private_error=-3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10648 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10649 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10650 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256;
10651 [ \$? -eq 1 ] &&
10652 $P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
10653 0 \
10654 -s "Async resume" \
10655 -s "! mbedtls_ssl_handshake returned" \
10656 -s "Async sign callback: no key matches this certificate." \
10657 -s "Successful connection"
10658
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10659requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10660requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]10661run_test "SSL async private: renegotiation: client-initiated, sign" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10662 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10663 async_operations=s async_private_delay1=1 async_private_delay2=1 \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10664 exchanges=2 renegotiation=1" \
10665 "$P_CLI exchanges=2 renegotiation=1 renegotiate=1" \
10666 0 \
10667 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10668 -s "Async resume (slot [0-9]): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10669
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10670requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10671requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]10672run_test "SSL async private: renegotiation: server-initiated, sign" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10673 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10674 async_operations=s async_private_delay1=1 async_private_delay2=1 \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10675 exchanges=2 renegotiation=1 renegotiate=1" \
10676 "$P_CLI exchanges=2 renegotiation=1" \
10677 0 \
10678 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10679 -s "Async resume (slot [0-9]): sign done, status=0"
10680
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10681requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10682requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]10683run_test "SSL async private: renegotiation: client-initiated, decrypt" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10684 "$P_SRV \
10685 async_operations=d async_private_delay1=1 async_private_delay2=1 \
10686 exchanges=2 renegotiation=1" \
10687 "$P_CLI exchanges=2 renegotiation=1 renegotiate=1 \
10688 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10689 0 \
10690 -s "Async decrypt callback: using key slot " \
10691 -s "Async resume (slot [0-9]): decrypt done, status=0"
10692
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10693requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10694requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]10695run_test "SSL async private: renegotiation: server-initiated, decrypt" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10696 "$P_SRV \
10697 async_operations=d async_private_delay1=1 async_private_delay2=1 \
10698 exchanges=2 renegotiation=1 renegotiate=1" \
10699 "$P_CLI exchanges=2 renegotiation=1 \
10700 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10701 0 \
10702 -s "Async decrypt callback: using key slot " \
10703 -s "Async resume (slot [0-9]): decrypt done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10704
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10705# Tests for ECC extensions (rfc 4492)
10706
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]10707requires_hash_alg SHA_256
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]10708requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10709run_test "Force a non ECC ciphersuite in the client side" \
10710 "$P_SRV debug_level=3" \
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]10711 "$P_CLI debug_level=3 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA256" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10712 0 \
Jerry Yu136320b2021-12-21 17:09:00 +0800[diff] [blame]10713 -C "client hello, adding supported_groups extension" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10714 -C "client hello, adding supported_point_formats extension" \
10715 -S "found supported elliptic curves extension" \
10716 -S "found supported point formats extension"
10717
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]10718requires_hash_alg SHA_256
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]10719requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10720run_test "Force a non ECC ciphersuite in the server side" \
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]10721 "$P_SRV debug_level=3 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA256" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10722 "$P_CLI debug_level=3" \
10723 0 \
10724 -C "found supported_point_formats extension" \
10725 -S "server hello, supported_point_formats extension"
10726
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]10727requires_hash_alg SHA_256
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10728run_test "Force an ECC ciphersuite in the client side" \
10729 "$P_SRV debug_level=3" \
10730 "$P_CLI debug_level=3 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
10731 0 \
Jerry Yu136320b2021-12-21 17:09:00 +0800[diff] [blame]10732 -c "client hello, adding supported_groups extension" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10733 -c "client hello, adding supported_point_formats extension" \
10734 -s "found supported elliptic curves extension" \
10735 -s "found supported point formats extension"
10736
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]10737requires_hash_alg SHA_256
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10738run_test "Force an ECC ciphersuite in the server side" \
10739 "$P_SRV debug_level=3 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
10740 "$P_CLI debug_level=3" \
10741 0 \
10742 -c "found supported_point_formats extension" \
10743 -s "server hello, supported_point_formats extension"
10744
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10745# Tests for DTLS HelloVerifyRequest
10746
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10747requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10748run_test "DTLS cookie: enabled" \
10749 "$P_SRV dtls=1 debug_level=2" \
10750 "$P_CLI dtls=1 debug_level=2" \
10751 0 \
10752 -s "cookie verification failed" \
10753 -s "cookie verification passed" \
10754 -S "cookie verification skipped" \
10755 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]10756 -s "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10757 -S "SSL - The requested feature is not available"
10758
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10759requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10760run_test "DTLS cookie: disabled" \
10761 "$P_SRV dtls=1 debug_level=2 cookies=0" \
10762 "$P_CLI dtls=1 debug_level=2" \
10763 0 \
10764 -S "cookie verification failed" \
10765 -S "cookie verification passed" \
10766 -s "cookie verification skipped" \
10767 -C "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]10768 -S "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10769 -S "SSL - The requested feature is not available"
10770
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10771requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]10772run_test "DTLS cookie: default (failing)" \
10773 "$P_SRV dtls=1 debug_level=2 cookies=-1" \
10774 "$P_CLI dtls=1 debug_level=2 hs_timeout=100-400" \
10775 1 \
10776 -s "cookie verification failed" \
10777 -S "cookie verification passed" \
10778 -S "cookie verification skipped" \
10779 -C "received hello verify request" \
10780 -S "hello verification requested" \
10781 -s "SSL - The requested feature is not available"
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10782
10783requires_ipv6
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10784requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10785run_test "DTLS cookie: enabled, IPv6" \
10786 "$P_SRV dtls=1 debug_level=2 server_addr=::1" \
10787 "$P_CLI dtls=1 debug_level=2 server_addr=::1" \
10788 0 \
10789 -s "cookie verification failed" \
10790 -s "cookie verification passed" \
10791 -S "cookie verification skipped" \
10792 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]10793 -s "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10794 -S "SSL - The requested feature is not available"
10795
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10796requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard579950c2014-09-29 17:47:33 +0200[diff] [blame]10797run_test "DTLS cookie: enabled, nbio" \
10798 "$P_SRV dtls=1 nbio=2 debug_level=2" \
10799 "$P_CLI dtls=1 nbio=2 debug_level=2" \
10800 0 \
10801 -s "cookie verification failed" \
10802 -s "cookie verification passed" \
10803 -S "cookie verification skipped" \
10804 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]10805 -s "hello verification requested" \
Manuel Pégourié-Gonnard579950c2014-09-29 17:47:33 +0200[diff] [blame]10806 -S "SSL - The requested feature is not available"
10807
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10808# Tests for client reconnecting from the same port with DTLS
10809
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10810not_with_valgrind # spurious resend
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10811requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10812run_test "DTLS client reconnect from same port: reference" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]10813 "$P_SRV dtls=1 exchanges=2 read_timeout=20000 hs_timeout=10000-20000" \
10814 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=10000-20000" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10815 0 \
10816 -C "resend" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10817 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10818 -S "Client initiated reconnection from same port"
10819
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10820not_with_valgrind # spurious resend
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10821requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10822run_test "DTLS client reconnect from same port: reconnect" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]10823 "$P_SRV dtls=1 exchanges=2 read_timeout=20000 hs_timeout=10000-20000" \
10824 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=10000-20000 reconnect_hard=1" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10825 0 \
10826 -C "resend" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10827 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10828 -s "Client initiated reconnection from same port"
10829
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]10830not_with_valgrind # server/client too slow to respond in time (next test has higher timeouts)
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10831requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]10832run_test "DTLS client reconnect from same port: reconnect, nbio, no valgrind" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10833 "$P_SRV dtls=1 exchanges=2 read_timeout=1000 nbio=2" \
10834 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=500-1000 reconnect_hard=1" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10835 0 \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10836 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10837 -s "Client initiated reconnection from same port"
10838
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]10839only_with_valgrind # Only with valgrind, do previous test but with higher read_timeout and hs_timeout
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10840requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]10841run_test "DTLS client reconnect from same port: reconnect, nbio, valgrind" \
10842 "$P_SRV dtls=1 exchanges=2 read_timeout=2000 nbio=2 hs_timeout=1500-6000" \
10843 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=1500-3000 reconnect_hard=1" \
10844 0 \
10845 -S "The operation timed out" \
10846 -s "Client initiated reconnection from same port"
10847
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10848requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10849run_test "DTLS client reconnect from same port: no cookies" \
10850 "$P_SRV dtls=1 exchanges=2 read_timeout=1000 cookies=0" \
Manuel Pégourié-Gonnard6ad23b92015-09-15 12:57:46 +0200[diff] [blame]10851 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=500-8000 reconnect_hard=1" \
10852 0 \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10853 -s "The operation timed out" \
10854 -S "Client initiated reconnection from same port"
10855
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10856requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardbaad2de2020-03-13 11:11:02 +0100[diff] [blame]10857run_test "DTLS client reconnect from same port: attacker-injected" \
10858 -p "$P_PXY inject_clihlo=1" \
10859 "$P_SRV dtls=1 exchanges=2 debug_level=1" \
10860 "$P_CLI dtls=1 exchanges=2" \
10861 0 \
10862 -s "possible client reconnect from the same port" \
10863 -S "Client initiated reconnection from same port"
10864
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10865# Tests for various cases of client authentication with DTLS
10866# (focused on handshake flows and message parsing)
10867
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10868requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10869run_test "DTLS client auth: required" \
10870 "$P_SRV dtls=1 auth_mode=required" \
10871 "$P_CLI dtls=1" \
10872 0 \
10873 -s "Verifying peer X.509 certificate... ok"
10874
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10875requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10876run_test "DTLS client auth: optional, client has no cert" \
10877 "$P_SRV dtls=1 auth_mode=optional" \
10878 "$P_CLI dtls=1 crt_file=none key_file=none" \
10879 0 \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]10880 -s "! Certificate was missing"
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10881
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10882requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]10883run_test "DTLS client auth: none, client has no cert" \
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10884 "$P_SRV dtls=1 auth_mode=none" \
10885 "$P_CLI dtls=1 crt_file=none key_file=none debug_level=2" \
10886 0 \
10887 -c "skip write certificate$" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]10888 -s "! Certificate verification was skipped"
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10889
Manuel Pégourié-Gonnard0a885742015-08-04 12:08:35 +0200[diff] [blame]10890run_test "DTLS wrong PSK: badmac alert" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]10891 "$P_SRV dtls=1 psk=73776f726466697368 force_ciphersuite=TLS-PSK-WITH-AES-128-GCM-SHA256" \
Gilles Peskineabb1c222024-05-13 21:06:26 +0200[diff] [blame]10892 "$P_CLI dtls=1 psk=73776f726466697374" \
Manuel Pégourié-Gonnard0a885742015-08-04 12:08:35 +0200[diff] [blame]10893 1 \
10894 -s "SSL - Verification of the message MAC failed" \
10895 -c "SSL - A fatal alert message was received from our peer"
10896
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]10897# Tests for receiving fragmented handshake messages with DTLS
10898
10899requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10900requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]10901run_test "DTLS reassembly: no fragmentation (gnutls server)" \
10902 "$G_SRV -u --mtu 2048 -a" \
10903 "$P_CLI dtls=1 debug_level=2" \
10904 0 \
10905 -C "found fragmented DTLS handshake message" \
10906 -C "error"
10907
10908requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10909requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]10910run_test "DTLS reassembly: some fragmentation (gnutls server)" \
10911 "$G_SRV -u --mtu 512" \
10912 "$P_CLI dtls=1 debug_level=2" \
10913 0 \
10914 -c "found fragmented DTLS handshake message" \
10915 -C "error"
10916
10917requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10918requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]10919run_test "DTLS reassembly: more fragmentation (gnutls server)" \
10920 "$G_SRV -u --mtu 128" \
10921 "$P_CLI dtls=1 debug_level=2" \
10922 0 \
10923 -c "found fragmented DTLS handshake message" \
10924 -C "error"
10925
10926requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10927requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]10928run_test "DTLS reassembly: more fragmentation, nbio (gnutls server)" \
10929 "$G_SRV -u --mtu 128" \
10930 "$P_CLI dtls=1 nbio=2 debug_level=2" \
10931 0 \
10932 -c "found fragmented DTLS handshake message" \
10933 -C "error"
10934
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]10935requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]10936requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10937requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]10938run_test "DTLS reassembly: fragmentation, renego (gnutls server)" \
10939 "$G_SRV -u --mtu 256" \
10940 "$P_CLI debug_level=3 dtls=1 renegotiation=1 renegotiate=1" \
10941 0 \
10942 -c "found fragmented DTLS handshake message" \
10943 -c "client hello, adding renegotiation extension" \
10944 -c "found renegotiation extension" \
10945 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]10946 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]10947 -C "error" \
10948 -s "Extra-header:"
10949
10950requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]10951requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10952requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]10953run_test "DTLS reassembly: fragmentation, nbio, renego (gnutls server)" \
10954 "$G_SRV -u --mtu 256" \
10955 "$P_CLI debug_level=3 nbio=2 dtls=1 renegotiation=1 renegotiate=1" \
10956 0 \
10957 -c "found fragmented DTLS handshake message" \
10958 -c "client hello, adding renegotiation extension" \
10959 -c "found renegotiation extension" \
10960 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]10961 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]10962 -C "error" \
10963 -s "Extra-header:"
10964
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10965requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]10966run_test "DTLS reassembly: no fragmentation (openssl server)" \
10967 "$O_SRV -dtls -mtu 2048" \
10968 "$P_CLI dtls=1 debug_level=2" \
10969 0 \
10970 -C "found fragmented DTLS handshake message" \
10971 -C "error"
10972
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10973requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]10974run_test "DTLS reassembly: some fragmentation (openssl server)" \
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]10975 "$O_SRV -dtls -mtu 256" \
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]10976 "$P_CLI dtls=1 debug_level=2" \
10977 0 \
10978 -c "found fragmented DTLS handshake message" \
10979 -C "error"
10980
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10981requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]10982run_test "DTLS reassembly: more fragmentation (openssl server)" \
10983 "$O_SRV -dtls -mtu 256" \
10984 "$P_CLI dtls=1 debug_level=2" \
10985 0 \
10986 -c "found fragmented DTLS handshake message" \
10987 -C "error"
10988
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10989requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]10990run_test "DTLS reassembly: fragmentation, nbio (openssl server)" \
10991 "$O_SRV -dtls -mtu 256" \
10992 "$P_CLI dtls=1 nbio=2 debug_level=2" \
10993 0 \
10994 -c "found fragmented DTLS handshake message" \
10995 -C "error"
10996
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10997# Tests for sending fragmented handshake messages with DTLS
10998#
10999# Use client auth when we need the client to send large messages,
11000# and use large cert chains on both sides too (the long chains we have all use
11001# both RSA and ECDSA, but ideally we should have long chains with either).
11002# Sizes reached (UDP payload):
11003# - 2037B for server certificate
11004# - 1542B for client certificate
11005# - 1013B for newsessionticket
11006# - all others below 512B
11007# All those tests assume MAX_CONTENT_LEN is at least 2048
11008
11009requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11010requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11011requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11012requires_max_content_len 4096
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11013requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11014run_test "DTLS fragmenting: none (for reference)" \
11015 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11016 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11017 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11018 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]11019 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11020 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11021 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11022 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11023 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]11024 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11025 0 \
11026 -S "found fragmented DTLS handshake message" \
11027 -C "found fragmented DTLS handshake message" \
11028 -C "error"
11029
11030requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11031requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11032requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11033requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11034requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11035run_test "DTLS fragmenting: server only (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11036 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11037 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11038 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11039 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11040 max_frag_len=1024" \
11041 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11042 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11043 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11044 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11045 max_frag_len=2048" \
11046 0 \
11047 -S "found fragmented DTLS handshake message" \
11048 -c "found fragmented DTLS handshake message" \
11049 -C "error"
11050
Hanno Becker69ca0ad2018-08-24 12:11:35 +0100[diff] [blame]11051# With the MFL extension, the server has no way of forcing
11052# the client to not exceed a certain MTU; hence, the following
11053# test can't be replicated with an MTU proxy such as the one
11054# `client-initiated, server only (max_frag_len)` below.
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11055requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11056requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11057requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11058requires_max_content_len 4096
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11059requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11060run_test "DTLS fragmenting: server only (more) (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11061 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11062 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11063 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11064 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11065 max_frag_len=512" \
11066 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11067 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11068 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11069 hs_timeout=2500-60000 \
Hanno Becker69ca0ad2018-08-24 12:11:35 +0100[diff] [blame]11070 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11071 0 \
11072 -S "found fragmented DTLS handshake message" \
11073 -c "found fragmented DTLS handshake message" \
11074 -C "error"
11075
11076requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11077requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11078requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11079requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11080requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11081run_test "DTLS fragmenting: client-initiated, server only (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11082 "$P_SRV dtls=1 debug_level=2 auth_mode=none \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11083 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11084 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11085 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11086 max_frag_len=2048" \
11087 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11088 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11089 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11090 hs_timeout=2500-60000 \
11091 max_frag_len=1024" \
11092 0 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11093 -S "found fragmented DTLS handshake message" \
11094 -c "found fragmented DTLS handshake message" \
11095 -C "error"
11096
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11097# While not required by the standard defining the MFL extension
11098# (according to which it only applies to records, not to datagrams),
11099# Mbed TLS will never send datagrams larger than MFL + { Max record expansion },
11100# as otherwise there wouldn't be any means to communicate MTU restrictions
11101# to the peer.
11102# The next test checks that no datagrams significantly larger than the
11103# negotiated MFL are sent.
11104requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11105requires_config_enabled MBEDTLS_RSA_C
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11106requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11107requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11108requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11109run_test "DTLS fragmenting: client-initiated, server only (max_frag_len), proxy MTU" \
Andrzej Kurek0fc9cf42018-10-09 03:09:41 -0400[diff] [blame]11110 -p "$P_PXY mtu=1110" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11111 "$P_SRV dtls=1 debug_level=2 auth_mode=none \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11112 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11113 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11114 hs_timeout=2500-60000 \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11115 max_frag_len=2048" \
11116 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11117 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11118 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11119 hs_timeout=2500-60000 \
11120 max_frag_len=1024" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11121 0 \
11122 -S "found fragmented DTLS handshake message" \
11123 -c "found fragmented DTLS handshake message" \
11124 -C "error"
11125
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11126requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11127requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11128requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11129requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11130requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11131run_test "DTLS fragmenting: client-initiated, both (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11132 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11133 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11134 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11135 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11136 max_frag_len=2048" \
11137 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11138 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11139 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11140 hs_timeout=2500-60000 \
11141 max_frag_len=1024" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11142 0 \
11143 -s "found fragmented DTLS handshake message" \
11144 -c "found fragmented DTLS handshake message" \
11145 -C "error"
11146
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11147# While not required by the standard defining the MFL extension
11148# (according to which it only applies to records, not to datagrams),
11149# Mbed TLS will never send datagrams larger than MFL + { Max record expansion },
11150# as otherwise there wouldn't be any means to communicate MTU restrictions
11151# to the peer.
11152# The next test checks that no datagrams significantly larger than the
11153# negotiated MFL are sent.
11154requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11155requires_config_enabled MBEDTLS_RSA_C
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11156requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11157requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11158requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11159run_test "DTLS fragmenting: client-initiated, both (max_frag_len), proxy MTU" \
Andrzej Kurek0fc9cf42018-10-09 03:09:41 -0400[diff] [blame]11160 -p "$P_PXY mtu=1110" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11161 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11162 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11163 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11164 hs_timeout=2500-60000 \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11165 max_frag_len=2048" \
11166 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11167 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11168 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11169 hs_timeout=2500-60000 \
11170 max_frag_len=1024" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11171 0 \
11172 -s "found fragmented DTLS handshake message" \
11173 -c "found fragmented DTLS handshake message" \
11174 -C "error"
11175
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11176requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11177requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11178requires_max_content_len 4096
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11179requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11180run_test "DTLS fragmenting: none (for reference) (MTU)" \
11181 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11182 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11183 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11184 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]11185 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11186 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11187 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11188 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11189 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]11190 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11191 0 \
11192 -S "found fragmented DTLS handshake message" \
11193 -C "found fragmented DTLS handshake message" \
11194 -C "error"
11195
11196requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11197requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11198requires_max_content_len 4096
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11199requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11200run_test "DTLS fragmenting: client (MTU)" \
11201 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11202 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11203 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]11204 hs_timeout=3500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]11205 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11206 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11207 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11208 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]11209 hs_timeout=3500-60000 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11210 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11211 0 \
11212 -s "found fragmented DTLS handshake message" \
11213 -C "found fragmented DTLS handshake message" \
11214 -C "error"
11215
11216requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11217requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11218requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11219requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11220run_test "DTLS fragmenting: server (MTU)" \
11221 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11222 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11223 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11224 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11225 mtu=512" \
11226 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11227 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11228 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11229 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11230 mtu=2048" \
11231 0 \
11232 -S "found fragmented DTLS handshake message" \
11233 -c "found fragmented DTLS handshake message" \
11234 -C "error"
11235
11236requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11237requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11238requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11239requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11240run_test "DTLS fragmenting: both (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11241 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11242 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11243 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11244 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11245 hs_timeout=2500-60000 \
Andrzej Kurek95805282018-10-11 08:55:37 -0400[diff] [blame]11246 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11247 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11248 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11249 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11250 hs_timeout=2500-60000 \
11251 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11252 0 \
11253 -s "found fragmented DTLS handshake message" \
11254 -c "found fragmented DTLS handshake message" \
11255 -C "error"
11256
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11257# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11258requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11259requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11260requires_hash_alg SHA_256
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11261requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11262run_test "DTLS fragmenting: both (MTU=512)" \
Hanno Becker8d832182018-03-15 10:14:19 +0000[diff] [blame]11263 -p "$P_PXY mtu=512" \
Hanno Becker72a4f032017-11-15 16:39:20 +0000[diff] [blame]11264 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11265 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11266 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11267 hs_timeout=2500-60000 \
Hanno Becker72a4f032017-11-15 16:39:20 +0000[diff] [blame]11268 mtu=512" \
11269 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11270 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11271 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11272 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
11273 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]11274 mtu=512" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]11275 0 \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]11276 -s "found fragmented DTLS handshake message" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]11277 -c "found fragmented DTLS handshake message" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]11278 -C "error"
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]11279
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11280# Test for automatic MTU reduction on repeated resend.
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11281# Forcing ciphersuite for this test to fit the MTU of 508 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11282# The ratio of max/min timeout should ideally equal 4 to accept two
11283# retransmissions, but in some cases (like both the server and client using
11284# fragmentation and auto-reduction) an extra retransmission might occur,
11285# hence the ratio of 8.
Hanno Becker37029eb2018-08-29 17:01:40 +0100[diff] [blame]11286not_with_valgrind
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]11287requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11288requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11289requires_max_content_len 2048
Gilles Peskine0d8b86a2019-09-20 18:03:11 +0200[diff] [blame]11290run_test "DTLS fragmenting: proxy MTU: auto-reduction (not valgrind)" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]11291 -p "$P_PXY mtu=508" \
11292 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11293 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11294 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11295 hs_timeout=400-3200" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]11296 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11297 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11298 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11299 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
11300 hs_timeout=400-3200" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]11301 0 \
11302 -s "found fragmented DTLS handshake message" \
11303 -c "found fragmented DTLS handshake message" \
11304 -C "error"
11305
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11306# Forcing ciphersuite for this test to fit the MTU of 508 with full config.
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]11307only_with_valgrind
11308requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11309requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11310requires_max_content_len 2048
Gilles Peskine0d8b86a2019-09-20 18:03:11 +0200[diff] [blame]11311run_test "DTLS fragmenting: proxy MTU: auto-reduction (with valgrind)" \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]11312 -p "$P_PXY mtu=508" \
11313 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11314 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11315 key_file=$DATA_FILES_PATH/server7.key \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]11316 hs_timeout=250-10000" \
11317 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11318 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11319 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11320 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]11321 hs_timeout=250-10000" \
11322 0 \
11323 -s "found fragmented DTLS handshake message" \
11324 -c "found fragmented DTLS handshake message" \
11325 -C "error"
11326
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11327# the proxy shouldn't drop or mess up anything, so we shouldn't need to resend
Manuel Pégourié-Gonnard3d183ce2018-08-22 09:56:22 +0200[diff] [blame]11328# OTOH the client might resend if the server is to slow to reset after sending
11329# a HelloVerifyRequest, so only check for no retransmission server-side
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11330not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11331requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11332requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11333requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11334requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11335run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11336 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11337 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11338 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11339 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11340 hs_timeout=10000-60000 \
11341 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11342 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11343 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11344 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11345 hs_timeout=10000-60000 \
11346 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11347 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11348 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11349 -s "found fragmented DTLS handshake message" \
11350 -c "found fragmented DTLS handshake message" \
11351 -C "error"
11352
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11353# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11354# the proxy shouldn't drop or mess up anything, so we shouldn't need to resend
11355# OTOH the client might resend if the server is to slow to reset after sending
11356# a HelloVerifyRequest, so only check for no retransmission server-side
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11357not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11358requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11359requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11360requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11361run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=512)" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11362 -p "$P_PXY mtu=512" \
11363 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11364 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11365 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11366 hs_timeout=10000-60000 \
11367 mtu=512" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11368 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11369 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11370 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11371 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
11372 hs_timeout=10000-60000 \
11373 mtu=512" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11374 0 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11375 -S "autoreduction" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11376 -s "found fragmented DTLS handshake message" \
11377 -c "found fragmented DTLS handshake message" \
11378 -C "error"
11379
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11380not_with_valgrind # spurious autoreduction due to timeout
11381requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11382requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11383requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11384requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11385run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11386 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11387 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11388 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11389 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11390 hs_timeout=10000-60000 \
11391 mtu=1024 nbio=2" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11392 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11393 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11394 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11395 hs_timeout=10000-60000 \
11396 mtu=1024 nbio=2" \
11397 0 \
11398 -S "autoreduction" \
11399 -s "found fragmented DTLS handshake message" \
11400 -c "found fragmented DTLS handshake message" \
11401 -C "error"
11402
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11403# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11404not_with_valgrind # spurious autoreduction due to timeout
11405requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11406requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11407requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11408run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=512)" \
11409 -p "$P_PXY mtu=512" \
11410 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11411 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11412 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11413 hs_timeout=10000-60000 \
11414 mtu=512 nbio=2" \
11415 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11416 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11417 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11418 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
11419 hs_timeout=10000-60000 \
11420 mtu=512 nbio=2" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11421 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11422 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11423 -s "found fragmented DTLS handshake message" \
11424 -c "found fragmented DTLS handshake message" \
11425 -C "error"
11426
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11427# Forcing ciphersuite for this test to fit the MTU of 1450 with full config.
Hanno Beckerb841b4f2018-08-28 10:25:51 +0100[diff] [blame]11428# This ensures things still work after session_reset().
11429# It also exercises the "resumed handshake" flow.
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11430# Since we don't support reading fragmented ClientHello yet,
11431# up the MTU to 1450 (larger than ClientHello with session ticket,
11432# but still smaller than client's Certificate to ensure fragmentation).
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11433# An autoreduction on the client-side might happen if the server is
11434# slow to reset, therefore omitting '-C "autoreduction"' below.
Manuel Pégourié-Gonnard2f2d9022018-08-21 12:17:54 +0200[diff] [blame]11435# reco_delay avoids races where the client reconnects before the server has
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11436# resumed listening, which would result in a spurious autoreduction.
11437not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11438requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11439requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11440requires_max_content_len 2048
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11441run_test "DTLS fragmenting: proxy MTU, resumed handshake" \
11442 -p "$P_PXY mtu=1450" \
11443 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11444 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11445 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11446 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11447 mtu=1450" \
11448 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11449 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11450 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11451 hs_timeout=10000-60000 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11452 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Jerry Yua15af372022-12-05 15:55:24 +0800[diff] [blame]11453 mtu=1450 reconnect=1 skip_close_notify=1 reco_delay=1000" \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11454 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11455 -S "autoreduction" \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11456 -s "found fragmented DTLS handshake message" \
11457 -c "found fragmented DTLS handshake message" \
11458 -C "error"
11459
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11460# An autoreduction on the client-side might happen if the server is
11461# slow to reset, therefore omitting '-C "autoreduction"' below.
11462not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11463requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11464requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11465requires_hash_alg SHA_256
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11466requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11467requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11468run_test "DTLS fragmenting: proxy MTU, ChachaPoly renego" \
11469 -p "$P_PXY mtu=512" \
11470 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11471 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11472 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11473 exchanges=2 renegotiation=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11474 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11475 mtu=512" \
11476 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11477 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11478 key_file=$DATA_FILES_PATH/server8.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11479 exchanges=2 renegotiation=1 renegotiate=1 \
Ronald Cron60f76662023-11-28 17:52:42 +0100[diff] [blame]11480 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11481 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11482 mtu=512" \
11483 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11484 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11485 -s "found fragmented DTLS handshake message" \
11486 -c "found fragmented DTLS handshake message" \
11487 -C "error"
11488
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11489# An autoreduction on the client-side might happen if the server is
11490# slow to reset, therefore omitting '-C "autoreduction"' below.
11491not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11492requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11493requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11494requires_hash_alg SHA_256
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11495requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11496requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11497run_test "DTLS fragmenting: proxy MTU, AES-GCM renego" \
11498 -p "$P_PXY mtu=512" \
11499 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11500 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11501 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11502 exchanges=2 renegotiation=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11503 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11504 mtu=512" \
11505 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11506 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11507 key_file=$DATA_FILES_PATH/server8.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11508 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11509 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11510 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11511 mtu=512" \
11512 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11513 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11514 -s "found fragmented DTLS handshake message" \
11515 -c "found fragmented DTLS handshake message" \
11516 -C "error"
11517
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11518# An autoreduction on the client-side might happen if the server is
11519# slow to reset, therefore omitting '-C "autoreduction"' below.
11520not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11521requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11522requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11523requires_hash_alg SHA_256
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11524requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11525requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11526run_test "DTLS fragmenting: proxy MTU, AES-CCM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11527 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11528 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11529 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11530 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11531 exchanges=2 renegotiation=1 \
11532 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11533 hs_timeout=10000-60000 \
11534 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11535 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11536 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11537 key_file=$DATA_FILES_PATH/server8.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11538 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11539 hs_timeout=10000-60000 \
11540 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11541 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11542 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11543 -s "found fragmented DTLS handshake message" \
11544 -c "found fragmented DTLS handshake message" \
11545 -C "error"
11546
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11547# An autoreduction on the client-side might happen if the server is
11548# slow to reset, therefore omitting '-C "autoreduction"' below.
11549not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11550requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11551requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11552requires_hash_alg SHA_256
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11553requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11554requires_config_enabled MBEDTLS_SSL_ENCRYPT_THEN_MAC
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11555requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11556run_test "DTLS fragmenting: proxy MTU, AES-CBC EtM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11557 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11558 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11559 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11560 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11561 exchanges=2 renegotiation=1 \
11562 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11563 hs_timeout=10000-60000 \
11564 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11565 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11566 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11567 key_file=$DATA_FILES_PATH/server8.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11568 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11569 hs_timeout=10000-60000 \
11570 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11571 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11572 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11573 -s "found fragmented DTLS handshake message" \
11574 -c "found fragmented DTLS handshake message" \
11575 -C "error"
11576
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11577# An autoreduction on the client-side might happen if the server is
11578# slow to reset, therefore omitting '-C "autoreduction"' below.
11579not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11580requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11581requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11582requires_hash_alg SHA_256
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11583requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11584requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11585run_test "DTLS fragmenting: proxy MTU, AES-CBC non-EtM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11586 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11587 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11588 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11589 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11590 exchanges=2 renegotiation=1 \
11591 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256 etm=0 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11592 hs_timeout=10000-60000 \
11593 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11594 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11595 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11596 key_file=$DATA_FILES_PATH/server8.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11597 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11598 hs_timeout=10000-60000 \
11599 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11600 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11601 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11602 -s "found fragmented DTLS handshake message" \
11603 -c "found fragmented DTLS handshake message" \
11604 -C "error"
11605
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11606# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]11607requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11608requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]11609client_needs_more_time 2
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11610requires_max_content_len 2048
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]11611run_test "DTLS fragmenting: proxy MTU + 3d" \
11612 -p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]11613 "$P_SRV dgram_packing=0 dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11614 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11615 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]11616 hs_timeout=250-10000 mtu=512" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]11617 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11618 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11619 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11620 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]11621 hs_timeout=250-10000 mtu=512" \
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]11622 0 \
11623 -s "found fragmented DTLS handshake message" \
11624 -c "found fragmented DTLS handshake message" \
11625 -C "error"
11626
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11627# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11628requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11629requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11630client_needs_more_time 2
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11631requires_max_content_len 2048
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11632run_test "DTLS fragmenting: proxy MTU + 3d, nbio" \
11633 -p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
11634 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11635 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11636 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11637 hs_timeout=250-10000 mtu=512 nbio=2" \
11638 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11639 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11640 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11641 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11642 hs_timeout=250-10000 mtu=512 nbio=2" \
11643 0 \
11644 -s "found fragmented DTLS handshake message" \
11645 -c "found fragmented DTLS handshake message" \
11646 -C "error"
11647
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11648# interop tests for DTLS fragmentating with reliable connection
11649#
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11650# here and below we just want to test that the we fragment in a way that
11651# pleases other implementations, so we don't need the peer to fragment
11652requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11653requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]11654requires_gnutls
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11655requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11656run_test "DTLS fragmenting: gnutls server, DTLS 1.2" \
11657 "$G_SRV -u" \
11658 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11659 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11660 key_file=$DATA_FILES_PATH/server8.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11661 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11662 0 \
11663 -c "fragmenting handshake message" \
11664 -C "error"
11665
Hanno Beckerb9a00862018-08-28 10:20:22 +0100[diff] [blame]11666# We use --insecure for the GnuTLS client because it expects
11667# the hostname / IP it connects to to be the name used in the
11668# certificate obtained from the server. Here, however, it
11669# connects to 127.0.0.1 while our test certificates use 'localhost'
11670# as the server name in the certificate. This will make the
Shaun Case8b0ecbc2021-12-20 21:14:10 -0800[diff] [blame]11671# certificate validation fail, but passing --insecure makes
Hanno Beckerb9a00862018-08-28 10:20:22 +0100[diff] [blame]11672# GnuTLS continue the connection nonetheless.
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11673requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11674requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]11675requires_gnutls
Andrzej Kurekb4593462018-10-11 08:43:30 -0400[diff] [blame]11676requires_not_i686
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11677requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11678run_test "DTLS fragmenting: gnutls client, DTLS 1.2" \
Valerio Setti3b2c0282023-03-08 10:22:29 +0100[diff] [blame]11679 "$P_SRV dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11680 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11681 key_file=$DATA_FILES_PATH/server7.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11682 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]11683 "$G_CLI -u --insecure 127.0.0.1" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11684 0 \
11685 -s "fragmenting handshake message"
11686
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11687requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11688requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11689requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11690run_test "DTLS fragmenting: openssl server, DTLS 1.2" \
11691 "$O_SRV -dtls1_2 -verify 10" \
11692 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11693 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11694 key_file=$DATA_FILES_PATH/server8.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11695 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11696 0 \
11697 -c "fragmenting handshake message" \
11698 -C "error"
11699
11700requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11701requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11702requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11703run_test "DTLS fragmenting: openssl client, DTLS 1.2" \
11704 "$P_SRV dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11705 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11706 key_file=$DATA_FILES_PATH/server7.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11707 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11708 "$O_CLI -dtls1_2" \
11709 0 \
11710 -s "fragmenting handshake message"
11711
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11712# interop tests for DTLS fragmentating with unreliable connection
11713#
11714# again we just want to test that the we fragment in a way that
11715# pleases other implementations, so we don't need the peer to fragment
11716requires_gnutls_next
11717requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11718requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]11719client_needs_more_time 4
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11720requires_max_content_len 2048
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11721run_test "DTLS fragmenting: 3d, gnutls server, DTLS 1.2" \
11722 -p "$P_PXY drop=8 delay=8 duplicate=8" \
11723 "$G_NEXT_SRV -u" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]11724 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11725 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11726 key_file=$DATA_FILES_PATH/server8.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11727 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11728 0 \
11729 -c "fragmenting handshake message" \
11730 -C "error"
11731
11732requires_gnutls_next
11733requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11734requires_config_enabled MBEDTLS_RSA_C
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11735client_needs_more_time 4
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11736requires_max_content_len 2048
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11737run_test "DTLS fragmenting: 3d, gnutls client, DTLS 1.2" \
11738 -p "$P_PXY drop=8 delay=8 duplicate=8" \
11739 "$P_SRV dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11740 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11741 key_file=$DATA_FILES_PATH/server7.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11742 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]11743 "$G_NEXT_CLI -u --insecure 127.0.0.1" \
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11744 0 \
11745 -s "fragmenting handshake message"
11746
Zhangsen Wang91385122022-07-12 01:48:17 +0000[diff] [blame]11747## The test below requires 1.1.1a or higher version of openssl, otherwise
11748## it might trigger a bug due to openssl server (https://github.com/openssl/openssl/issues/6902)
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]11749requires_openssl_next
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11750requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11751requires_config_enabled MBEDTLS_RSA_C
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11752client_needs_more_time 4
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11753requires_max_content_len 2048
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11754run_test "DTLS fragmenting: 3d, openssl server, DTLS 1.2" \
11755 -p "$P_PXY drop=8 delay=8 duplicate=8" \
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]11756 "$O_NEXT_SRV -dtls1_2 -verify 10" \
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11757 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11758 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11759 key_file=$DATA_FILES_PATH/server8.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11760 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11761 0 \
11762 -c "fragmenting handshake message" \
11763 -C "error"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11764
Zhangsen Wangd5e8a482022-07-29 07:53:36 +0000[diff] [blame]11765## the test below will time out with certain seed.
Zhangsen Wangbaeffbb2022-07-29 06:34:47 +0000[diff] [blame]11766## The cause is an openssl bug (https://github.com/openssl/openssl/issues/18887)
11767skip_next_test
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11768requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11769requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]11770client_needs_more_time 4
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11771requires_max_content_len 2048
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]11772run_test "DTLS fragmenting: 3d, openssl client, DTLS 1.2" \
11773 -p "$P_PXY drop=8 delay=8 duplicate=8" \
11774 "$P_SRV dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11775 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11776 key_file=$DATA_FILES_PATH/server7.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11777 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]11778 "$O_CLI -dtls1_2" \
11779 0 \
11780 -s "fragmenting handshake message"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11781
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11782# Tests for DTLS-SRTP (RFC 5764)
11783requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11784requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11785run_test "DTLS-SRTP all profiles supported" \
11786 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
11787 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
11788 0 \
11789 -s "found use_srtp extension" \
11790 -s "found srtp profile" \
11791 -s "selected srtp profile" \
11792 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11793 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11794 -c "client hello, adding use_srtp extension" \
11795 -c "found use_srtp extension" \
11796 -c "found srtp profile" \
11797 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11798 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11799 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11800 -C "error"
11801
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11802
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11803requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11804requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11805run_test "DTLS-SRTP server supports all profiles. Client supports one profile." \
11806 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11807 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=5 debug_level=3" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11808 0 \
11809 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11810 -s "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
11811 -s "selected srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11812 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11813 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11814 -c "client hello, adding use_srtp extension" \
11815 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11816 -c "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11817 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11818 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11819 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11820 -C "error"
11821
11822requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11823requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]11824run_test "DTLS-SRTP server supports one profile. Client supports all profiles." \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11825 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11826 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
11827 0 \
11828 -s "found use_srtp extension" \
11829 -s "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11830 -s "selected srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11831 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11832 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11833 -c "client hello, adding use_srtp extension" \
11834 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11835 -c "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11836 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11837 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11838 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11839 -C "error"
11840
11841requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11842requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11843run_test "DTLS-SRTP server and Client support only one matching profile." \
11844 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
11845 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
11846 0 \
11847 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11848 -s "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
11849 -s "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11850 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11851 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11852 -c "client hello, adding use_srtp extension" \
11853 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11854 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11855 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11856 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11857 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11858 -C "error"
11859
11860requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11861requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11862run_test "DTLS-SRTP server and Client support only one different profile." \
11863 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11864 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11865 0 \
11866 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11867 -s "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11868 -S "selected srtp profile" \
11869 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11870 -S "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11871 -c "client hello, adding use_srtp extension" \
11872 -C "found use_srtp extension" \
11873 -C "found srtp profile" \
11874 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11875 -C "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11876 -C "error"
11877
11878requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11879requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11880run_test "DTLS-SRTP server doesn't support use_srtp extension." \
11881 "$P_SRV dtls=1 debug_level=3" \
11882 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
11883 0 \
11884 -s "found use_srtp extension" \
11885 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11886 -S "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11887 -c "client hello, adding use_srtp extension" \
11888 -C "found use_srtp extension" \
11889 -C "found srtp profile" \
11890 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11891 -C "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11892 -C "error"
11893
11894requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11895requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11896run_test "DTLS-SRTP all profiles supported. mki used" \
11897 "$P_SRV dtls=1 use_srtp=1 support_mki=1 debug_level=3" \
11898 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
11899 0 \
11900 -s "found use_srtp extension" \
11901 -s "found srtp profile" \
11902 -s "selected srtp profile" \
11903 -s "server hello, adding use_srtp extension" \
11904 -s "dumping 'using mki' (8 bytes)" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11905 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11906 -c "client hello, adding use_srtp extension" \
11907 -c "found use_srtp extension" \
11908 -c "found srtp profile" \
11909 -c "selected srtp profile" \
11910 -c "dumping 'sending mki' (8 bytes)" \
11911 -c "dumping 'received mki' (8 bytes)" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11912 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11913 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Johan Pascal20c7db32020-10-26 22:45:58 +0100[diff] [blame]11914 -g "find_in_both '^ *DTLS-SRTP mki value: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11915 -C "error"
11916
11917requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11918requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11919run_test "DTLS-SRTP all profiles supported. server doesn't support mki." \
11920 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
11921 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
11922 0 \
11923 -s "found use_srtp extension" \
11924 -s "found srtp profile" \
11925 -s "selected srtp profile" \
11926 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11927 -s "DTLS-SRTP key material is"\
Johan Pascal5ef72d22020-10-28 17:05:47 +0100[diff] [blame]11928 -s "DTLS-SRTP no mki value negotiated"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11929 -S "dumping 'using mki' (8 bytes)" \
11930 -c "client hello, adding use_srtp extension" \
11931 -c "found use_srtp extension" \
11932 -c "found srtp profile" \
11933 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11934 -c "DTLS-SRTP key material is"\
Johan Pascal5ef72d22020-10-28 17:05:47 +0100[diff] [blame]11935 -c "DTLS-SRTP no mki value negotiated"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11936 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11937 -c "dumping 'sending mki' (8 bytes)" \
11938 -C "dumping 'received mki' (8 bytes)" \
11939 -C "error"
11940
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]11941requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11942requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11943run_test "DTLS-SRTP all profiles supported. openssl client." \
11944 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
11945 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11946 0 \
11947 -s "found use_srtp extension" \
11948 -s "found srtp profile" \
11949 -s "selected srtp profile" \
11950 -s "server hello, adding use_srtp extension" \
11951 -s "DTLS-SRTP key material is"\
11952 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
11953 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_80"
11954
11955requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11956requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11957run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. openssl client." \
11958 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
11959 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_32:SRTP_AES128_CM_SHA1_80 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11960 0 \
11961 -s "found use_srtp extension" \
11962 -s "found srtp profile" \
11963 -s "selected srtp profile" \
11964 -s "server hello, adding use_srtp extension" \
11965 -s "DTLS-SRTP key material is"\
11966 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
11967 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
11968
11969requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11970requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11971run_test "DTLS-SRTP server supports all profiles. Client supports one profile. openssl client." \
11972 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
11973 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11974 0 \
11975 -s "found use_srtp extension" \
11976 -s "found srtp profile" \
11977 -s "selected srtp profile" \
11978 -s "server hello, adding use_srtp extension" \
11979 -s "DTLS-SRTP key material is"\
11980 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
11981 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
11982
11983requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11984requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11985run_test "DTLS-SRTP server supports one profile. Client supports all profiles. openssl client." \
11986 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
11987 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11988 0 \
11989 -s "found use_srtp extension" \
11990 -s "found srtp profile" \
11991 -s "selected srtp profile" \
11992 -s "server hello, adding use_srtp extension" \
11993 -s "DTLS-SRTP key material is"\
11994 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
11995 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
11996
11997requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11998requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11999run_test "DTLS-SRTP server and Client support only one matching profile. openssl client." \
12000 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12001 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12002 0 \
12003 -s "found use_srtp extension" \
12004 -s "found srtp profile" \
12005 -s "selected srtp profile" \
12006 -s "server hello, adding use_srtp extension" \
12007 -s "DTLS-SRTP key material is"\
12008 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
12009 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
12010
12011requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12012requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12013run_test "DTLS-SRTP server and Client support only one different profile. openssl client." \
12014 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=1 debug_level=3" \
12015 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12016 0 \
12017 -s "found use_srtp extension" \
12018 -s "found srtp profile" \
12019 -S "selected srtp profile" \
12020 -S "server hello, adding use_srtp extension" \
12021 -S "DTLS-SRTP key material is"\
12022 -C "SRTP Extension negotiated, profile"
12023
12024requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12025requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12026run_test "DTLS-SRTP server doesn't support use_srtp extension. openssl client" \
12027 "$P_SRV dtls=1 debug_level=3" \
12028 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12029 0 \
12030 -s "found use_srtp extension" \
12031 -S "server hello, adding use_srtp extension" \
12032 -S "DTLS-SRTP key material is"\
12033 -C "SRTP Extension negotiated, profile"
12034
12035requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12036requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12037run_test "DTLS-SRTP all profiles supported. openssl server" \
12038 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12039 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12040 0 \
12041 -c "client hello, adding use_srtp extension" \
12042 -c "found use_srtp extension" \
12043 -c "found srtp profile" \
12044 -c "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_80" \
12045 -c "DTLS-SRTP key material is"\
12046 -C "error"
12047
12048requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12049requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12050run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. openssl server." \
12051 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32:SRTP_AES128_CM_SHA1_80 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12052 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12053 0 \
12054 -c "client hello, adding use_srtp extension" \
12055 -c "found use_srtp extension" \
12056 -c "found srtp profile" \
12057 -c "selected srtp profile" \
12058 -c "DTLS-SRTP key material is"\
12059 -C "error"
12060
12061requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12062requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12063run_test "DTLS-SRTP server supports all profiles. Client supports one profile. openssl server." \
12064 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12065 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12066 0 \
12067 -c "client hello, adding use_srtp extension" \
12068 -c "found use_srtp extension" \
12069 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
12070 -c "selected srtp profile" \
12071 -c "DTLS-SRTP key material is"\
12072 -C "error"
12073
12074requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12075requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12076run_test "DTLS-SRTP server supports one profile. Client supports all profiles. openssl server." \
12077 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12078 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12079 0 \
12080 -c "client hello, adding use_srtp extension" \
12081 -c "found use_srtp extension" \
12082 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
12083 -c "selected srtp profile" \
12084 -c "DTLS-SRTP key material is"\
12085 -C "error"
12086
12087requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12088requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12089run_test "DTLS-SRTP server and Client support only one matching profile. openssl server." \
12090 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12091 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12092 0 \
12093 -c "client hello, adding use_srtp extension" \
12094 -c "found use_srtp extension" \
12095 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
12096 -c "selected srtp profile" \
12097 -c "DTLS-SRTP key material is"\
12098 -C "error"
12099
12100requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12101requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12102run_test "DTLS-SRTP server and Client support only one different profile. openssl server." \
12103 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12104 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
12105 0 \
12106 -c "client hello, adding use_srtp extension" \
12107 -C "found use_srtp extension" \
12108 -C "found srtp profile" \
12109 -C "selected srtp profile" \
12110 -C "DTLS-SRTP key material is"\
12111 -C "error"
12112
12113requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12114requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12115run_test "DTLS-SRTP server doesn't support use_srtp extension. openssl server" \
12116 "$O_SRV -dtls" \
12117 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12118 0 \
12119 -c "client hello, adding use_srtp extension" \
12120 -C "found use_srtp extension" \
12121 -C "found srtp profile" \
12122 -C "selected srtp profile" \
12123 -C "DTLS-SRTP key material is"\
12124 -C "error"
12125
12126requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12127requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12128run_test "DTLS-SRTP all profiles supported. server doesn't support mki. openssl server." \
12129 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12130 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
12131 0 \
12132 -c "client hello, adding use_srtp extension" \
12133 -c "found use_srtp extension" \
12134 -c "found srtp profile" \
12135 -c "selected srtp profile" \
12136 -c "DTLS-SRTP key material is"\
12137 -c "DTLS-SRTP no mki value negotiated"\
12138 -c "dumping 'sending mki' (8 bytes)" \
12139 -C "dumping 'received mki' (8 bytes)" \
12140 -C "error"
12141
12142requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12143requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12144requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12145run_test "DTLS-SRTP all profiles supported. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12146 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
12147 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12148 0 \
12149 -s "found use_srtp extension" \
12150 -s "found srtp profile" \
12151 -s "selected srtp profile" \
12152 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12153 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12154 -c "SRTP profile: SRTP_AES128_CM_HMAC_SHA1_80"
12155
12156requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12157requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12158requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12159run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12160 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
12161 "$G_CLI -u --srtp-profiles=SRTP_NULL_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_80:SRTP_NULL_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12162 0 \
12163 -s "found use_srtp extension" \
12164 -s "found srtp profile" \
12165 -s "selected srtp profile" \
12166 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12167 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12168 -c "SRTP profile: SRTP_NULL_HMAC_SHA1_80"
12169
12170requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12171requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12172requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12173run_test "DTLS-SRTP server supports all profiles. Client supports one profile. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12174 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
12175 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12176 0 \
12177 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12178 -s "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
12179 -s "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12180 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12181 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12182 -c "SRTP profile: SRTP_AES128_CM_HMAC_SHA1_32"
12183
12184requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12185requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12186requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12187run_test "DTLS-SRTP server supports one profile. Client supports all profiles. gnutls client." \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12188 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12189 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12190 0 \
12191 -s "found use_srtp extension" \
12192 -s "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12193 -s "selected srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12194 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12195 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12196 -c "SRTP profile: SRTP_NULL_SHA1_32"
12197
12198requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12199requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12200requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12201run_test "DTLS-SRTP server and Client support only one matching profile. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12202 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12203 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12204 0 \
12205 -s "found use_srtp extension" \
12206 -s "found srtp profile" \
12207 -s "selected srtp profile" \
12208 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12209 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12210 -c "SRTP profile: SRTP_AES128_CM_HMAC_SHA1_32"
12211
12212requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12213requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12214requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12215run_test "DTLS-SRTP server and Client support only one different profile. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12216 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=1 debug_level=3" \
12217 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12218 0 \
12219 -s "found use_srtp extension" \
12220 -s "found srtp profile" \
12221 -S "selected srtp profile" \
12222 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12223 -S "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12224 -C "SRTP profile:"
12225
12226requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12227requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12228requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12229run_test "DTLS-SRTP server doesn't support use_srtp extension. gnutls client" \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12230 "$P_SRV dtls=1 debug_level=3" \
12231 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12232 0 \
12233 -s "found use_srtp extension" \
12234 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12235 -S "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12236 -C "SRTP profile:"
12237
12238requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12239requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12240requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12241run_test "DTLS-SRTP all profiles supported. gnutls server" \
12242 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
12243 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12244 0 \
12245 -c "client hello, adding use_srtp extension" \
12246 -c "found use_srtp extension" \
12247 -c "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12248 -c "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_80" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12249 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12250 -C "error"
12251
12252requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12253requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12254requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12255run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. gnutls server." \
12256 "$G_SRV -u --srtp-profiles=SRTP_NULL_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_80:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
12257 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12258 0 \
12259 -c "client hello, adding use_srtp extension" \
12260 -c "found use_srtp extension" \
12261 -c "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12262 -c "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_80" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12263 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12264 -C "error"
12265
12266requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12267requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12268requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12269run_test "DTLS-SRTP server supports all profiles. Client supports one profile. gnutls server." \
12270 "$G_SRV -u --srtp-profiles=SRTP_NULL_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_80:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
12271 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12272 0 \
12273 -c "client hello, adding use_srtp extension" \
12274 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12275 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12276 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12277 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12278 -C "error"
12279
12280requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12281requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12282requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12283run_test "DTLS-SRTP server supports one profile. Client supports all profiles. gnutls server." \
12284 "$G_SRV -u --srtp-profiles=SRTP_NULL_HMAC_SHA1_80" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12285 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12286 0 \
12287 -c "client hello, adding use_srtp extension" \
12288 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12289 -c "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12290 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12291 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12292 -C "error"
12293
12294requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12295requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12296requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12297run_test "DTLS-SRTP server and Client support only one matching profile. gnutls server." \
12298 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32" \
12299 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12300 0 \
12301 -c "client hello, adding use_srtp extension" \
12302 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12303 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12304 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12305 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12306 -C "error"
12307
12308requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12309requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12310requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12311run_test "DTLS-SRTP server and Client support only one different profile. gnutls server." \
12312 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12313 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12314 0 \
12315 -c "client hello, adding use_srtp extension" \
12316 -C "found use_srtp extension" \
12317 -C "found srtp profile" \
12318 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12319 -C "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12320 -C "error"
12321
12322requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12323requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12324requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12325run_test "DTLS-SRTP server doesn't support use_srtp extension. gnutls server" \
12326 "$G_SRV -u" \
12327 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12328 0 \
12329 -c "client hello, adding use_srtp extension" \
12330 -C "found use_srtp extension" \
12331 -C "found srtp profile" \
12332 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12333 -C "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12334 -C "error"
12335
12336requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12337requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12338requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12339run_test "DTLS-SRTP all profiles supported. mki used. gnutls server." \
12340 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
12341 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
12342 0 \
12343 -c "client hello, adding use_srtp extension" \
12344 -c "found use_srtp extension" \
12345 -c "found srtp profile" \
12346 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12347 -c "DTLS-SRTP key material is"\
Johan Pascal20c7db32020-10-26 22:45:58 +0100[diff] [blame]12348 -c "DTLS-SRTP mki value:"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12349 -c "dumping 'sending mki' (8 bytes)" \
12350 -c "dumping 'received mki' (8 bytes)" \
12351 -C "error"
12352
Manuel Pégourié-Gonnard64dffc52014-09-02 13:39:16 +0200[diff] [blame]12353# Tests for specific things with "unreliable" UDP connection
12354
12355not_with_valgrind # spurious resend due to timeout
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12356requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard64dffc52014-09-02 13:39:16 +0200[diff] [blame]12357run_test "DTLS proxy: reference" \
12358 -p "$P_PXY" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]12359 "$P_SRV dtls=1 debug_level=2 hs_timeout=10000-20000" \
12360 "$P_CLI dtls=1 debug_level=2 hs_timeout=10000-20000" \
Manuel Pégourié-Gonnard64dffc52014-09-02 13:39:16 +0200[diff] [blame]12361 0 \
12362 -C "replayed record" \
12363 -S "replayed record" \
Hanno Beckerb2a86c32019-07-19 15:43:09 +0100[diff] [blame]12364 -C "Buffer record from epoch" \
12365 -S "Buffer record from epoch" \
12366 -C "ssl_buffer_message" \
12367 -S "ssl_buffer_message" \
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]12368 -C "discarding invalid record" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]12369 -S "discarding invalid record" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]12370 -S "resend" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]12371 -s "Extra-header:" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]12372 -c "HTTP/1.0 200 OK"
12373
12374not_with_valgrind # spurious resend due to timeout
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12375requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]12376run_test "DTLS proxy: duplicate every packet" \
12377 -p "$P_PXY duplicate=1" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]12378 "$P_SRV dtls=1 dgram_packing=0 debug_level=2 hs_timeout=10000-20000" \
12379 "$P_CLI dtls=1 dgram_packing=0 debug_level=2 hs_timeout=10000-20000" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]12380 0 \
12381 -c "replayed record" \
12382 -s "replayed record" \
12383 -c "record from another epoch" \
12384 -s "record from another epoch" \
12385 -S "resend" \
12386 -s "Extra-header:" \
12387 -c "HTTP/1.0 200 OK"
12388
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12389requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]12390run_test "DTLS proxy: duplicate every packet, server anti-replay off" \
12391 -p "$P_PXY duplicate=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12392 "$P_SRV dtls=1 dgram_packing=0 debug_level=2 anti_replay=0" \
12393 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]12394 0 \
12395 -c "replayed record" \
12396 -S "replayed record" \
12397 -c "record from another epoch" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12398 -s "record from another epoch" \
12399 -c "resend" \
12400 -s "resend" \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]12401 -s "Extra-header:" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12402 -c "HTTP/1.0 200 OK"
12403
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12404requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]12405run_test "DTLS proxy: multiple records in same datagram" \
12406 -p "$P_PXY pack=50" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12407 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
12408 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]12409 0 \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12410 -c "next record in same datagram" \
12411 -s "next record in same datagram"
12412
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12413requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12414run_test "DTLS proxy: multiple records in same datagram, duplicate every packet" \
12415 -p "$P_PXY pack=50 duplicate=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12416 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
12417 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]12418 0 \
12419 -c "next record in same datagram" \
12420 -s "next record in same datagram"
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12421
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12422requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]12423run_test "DTLS proxy: inject invalid AD record, default badmac_limit" \
12424 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12425 "$P_SRV dtls=1 dgram_packing=0 debug_level=1" \
12426 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12427 0 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]12428 -c "discarding invalid record (mac)" \
12429 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12430 -s "Extra-header:" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12431 -c "HTTP/1.0 200 OK" \
12432 -S "too many records with bad MAC" \
12433 -S "Verification of the message MAC failed"
12434
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12435requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12436run_test "DTLS proxy: inject invalid AD record, badmac_limit 1" \
12437 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12438 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=1" \
12439 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12440 1 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]12441 -C "discarding invalid record (mac)" \
12442 -S "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12443 -S "Extra-header:" \
12444 -C "HTTP/1.0 200 OK" \
12445 -s "too many records with bad MAC" \
12446 -s "Verification of the message MAC failed"
12447
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12448requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12449run_test "DTLS proxy: inject invalid AD record, badmac_limit 2" \
12450 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12451 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=2" \
12452 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12453 0 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]12454 -c "discarding invalid record (mac)" \
12455 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12456 -s "Extra-header:" \
12457 -c "HTTP/1.0 200 OK" \
12458 -S "too many records with bad MAC" \
12459 -S "Verification of the message MAC failed"
12460
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12461requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12462run_test "DTLS proxy: inject invalid AD record, badmac_limit 2, exchanges 2"\
12463 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12464 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=2 exchanges=2" \
12465 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100 exchanges=2" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12466 1 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]12467 -c "discarding invalid record (mac)" \
12468 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12469 -s "Extra-header:" \
12470 -c "HTTP/1.0 200 OK" \
12471 -s "too many records with bad MAC" \
12472 -s "Verification of the message MAC failed"
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12473
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12474requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12475run_test "DTLS proxy: delay ChangeCipherSpec" \
12476 -p "$P_PXY delay_ccs=1" \
Hanno Beckerc4305232018-08-14 13:41:21 +0100[diff] [blame]12477 "$P_SRV dtls=1 debug_level=1 dgram_packing=0" \
12478 "$P_CLI dtls=1 debug_level=1 dgram_packing=0" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12479 0 \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]12480 -c "record from another epoch" \
12481 -s "record from another epoch" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12482 -s "Extra-header:" \
12483 -c "HTTP/1.0 200 OK"
12484
Hanno Beckeraa5d0c42018-08-16 13:15:19 +0100[diff] [blame]12485# Tests for reordering support with DTLS
12486
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12487requires_certificate_authentication
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12488requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12489run_test "DTLS reordering: Buffer out-of-order handshake message on client" \
12490 -p "$P_PXY delay_srv=ServerHello" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12491 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12492 hs_timeout=2500-60000" \
12493 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12494 hs_timeout=2500-60000" \
Hanno Beckere3842212018-08-16 15:28:59 +0100[diff] [blame]12495 0 \
12496 -c "Buffering HS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12497 -c "Next handshake message has been buffered - load"\
12498 -S "Buffering HS message" \
12499 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12500 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12501 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12502 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12503 -S "Remember CCS message"
Hanno Beckere3842212018-08-16 15:28:59 +0100[diff] [blame]12504
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12505requires_certificate_authentication
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12506requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]12507run_test "DTLS reordering: Buffer out-of-order handshake message fragment on client" \
12508 -p "$P_PXY delay_srv=ServerHello" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12509 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12510 hs_timeout=2500-60000" \
12511 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12512 hs_timeout=2500-60000" \
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]12513 0 \
12514 -c "Buffering HS message" \
12515 -c "found fragmented DTLS handshake message"\
12516 -c "Next handshake message 1 not or only partially bufffered" \
12517 -c "Next handshake message has been buffered - load"\
12518 -S "Buffering HS message" \
12519 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12520 -C "Injecting buffered CCS message" \
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]12521 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12522 -S "Injecting buffered CCS message" \
Hanno Beckeraa5d0c42018-08-16 13:15:19 +0100[diff] [blame]12523 -S "Remember CCS message"
12524
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12525# The client buffers the ServerKeyExchange before receiving the fragmented
12526# Certificate message; at the time of writing, together these are aroudn 1200b
12527# in size, so that the bound below ensures that the certificate can be reassembled
12528# while keeping the ServerKeyExchange.
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12529requires_certificate_authentication
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12530requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 1300
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12531requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12532run_test "DTLS reordering: Buffer out-of-order hs msg before reassembling next" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]12533 -p "$P_PXY delay_srv=Certificate delay_srv=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12534 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12535 hs_timeout=2500-60000" \
12536 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12537 hs_timeout=2500-60000" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]12538 0 \
12539 -c "Buffering HS message" \
12540 -c "Next handshake message has been buffered - load"\
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12541 -C "attempt to make space by freeing buffered messages" \
12542 -S "Buffering HS message" \
12543 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12544 -C "Injecting buffered CCS message" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12545 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12546 -S "Injecting buffered CCS message" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12547 -S "Remember CCS message"
12548
12549# The size constraints ensure that the delayed certificate message can't
12550# be reassembled while keeping the ServerKeyExchange message, but it can
12551# when dropping it first.
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12552requires_certificate_authentication
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12553requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 900
12554requires_config_value_at_most "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 1299
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12555requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12556run_test "DTLS reordering: Buffer out-of-order hs msg before reassembling next, free buffered msg" \
12557 -p "$P_PXY delay_srv=Certificate delay_srv=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12558 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12559 hs_timeout=2500-60000" \
12560 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12561 hs_timeout=2500-60000" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12562 0 \
12563 -c "Buffering HS message" \
12564 -c "attempt to make space by freeing buffered future messages" \
12565 -c "Enough space available after freeing buffered HS messages" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]12566 -S "Buffering HS message" \
12567 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12568 -C "Injecting buffered CCS message" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]12569 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12570 -S "Injecting buffered CCS message" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]12571 -S "Remember CCS message"
12572
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12573requires_certificate_authentication
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12574requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12575run_test "DTLS reordering: Buffer out-of-order handshake message on server" \
12576 -p "$P_PXY delay_cli=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12577 "$P_SRV dgram_packing=0 auth_mode=required cookies=0 dtls=1 debug_level=2 \
12578 hs_timeout=2500-60000" \
12579 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12580 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12581 0 \
12582 -C "Buffering HS message" \
12583 -C "Next handshake message has been buffered - load"\
12584 -s "Buffering HS message" \
12585 -s "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12586 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12587 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12588 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12589 -S "Remember CCS message"
12590
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12591requires_certificate_authentication
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12592requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]12593requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12594run_test "DTLS reordering: Buffer out-of-order CCS message on client"\
12595 -p "$P_PXY delay_srv=NewSessionTicket" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12596 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12597 hs_timeout=2500-60000" \
12598 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12599 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12600 0 \
12601 -C "Buffering HS message" \
12602 -C "Next handshake message has been buffered - load"\
12603 -S "Buffering HS message" \
12604 -S "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12605 -c "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12606 -c "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12607 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12608 -S "Remember CCS message"
12609
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12610requires_certificate_authentication
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12611requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12612run_test "DTLS reordering: Buffer out-of-order CCS message on server"\
12613 -p "$P_PXY delay_cli=ClientKeyExchange" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12614 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12615 hs_timeout=2500-60000" \
12616 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12617 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12618 0 \
12619 -C "Buffering HS message" \
12620 -C "Next handshake message has been buffered - load"\
12621 -S "Buffering HS message" \
12622 -S "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12623 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12624 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12625 -s "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12626 -s "Remember CCS message"
12627
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12628requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12629run_test "DTLS reordering: Buffer encrypted Finished message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12630 -p "$P_PXY delay_ccs=1" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12631 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12632 hs_timeout=2500-60000" \
12633 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12634 hs_timeout=2500-60000" \
Hanno Beckerb34149c2018-08-16 15:29:06 +0100[diff] [blame]12635 0 \
12636 -s "Buffer record from epoch 1" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12637 -s "Found buffered record from current epoch - load" \
12638 -c "Buffer record from epoch 1" \
12639 -c "Found buffered record from current epoch - load"
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12640
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12641# In this test, both the fragmented NewSessionTicket and the ChangeCipherSpec
12642# from the server are delayed, so that the encrypted Finished message
12643# is received and buffered. When the fragmented NewSessionTicket comes
12644# in afterwards, the encrypted Finished message must be freed in order
12645# to make space for the NewSessionTicket to be reassembled.
12646# This works only in very particular circumstances:
12647# - MBEDTLS_SSL_DTLS_MAX_BUFFERING must be large enough to allow buffering
12648# of the NewSessionTicket, but small enough to also allow buffering of
12649# the encrypted Finished message.
12650# - The MTU setting on the server must be so small that the NewSessionTicket
12651# needs to be fragmented.
12652# - All messages sent by the server must be small enough to be either sent
12653# without fragmentation or be reassembled within the bounds of
12654# MBEDTLS_SSL_DTLS_MAX_BUFFERING. Achieve this by testing with a PSK-based
12655# handshake, omitting CRTs.
Manuel Pégourié-Gonnardeef4c752019-05-28 10:21:30 +0200[diff] [blame]12656requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 190
12657requires_config_value_at_most "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 230
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12658run_test "DTLS reordering: Buffer encrypted Finished message, drop for fragmented NewSessionTicket" \
12659 -p "$P_PXY delay_srv=NewSessionTicket delay_srv=NewSessionTicket delay_ccs=1" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12660 "$P_SRV mtu=140 response_size=90 dgram_packing=0 psk=73776f726466697368 psk_identity=foo cookies=0 dtls=1 debug_level=2" \
12661 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8 psk=73776f726466697368 psk_identity=foo" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12662 0 \
12663 -s "Buffer record from epoch 1" \
12664 -s "Found buffered record from current epoch - load" \
12665 -c "Buffer record from epoch 1" \
12666 -C "Found buffered record from current epoch - load" \
12667 -c "Enough space available after freeing future epoch record"
12668
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]12669# Tests for "randomly unreliable connection": try a variety of flows and peers
12670
12671client_needs_more_time 2
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12672run_test "DTLS proxy: 3d (drop, delay, duplicate), \"short\" PSK handshake" \
12673 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Gilles Peskine4c1347c2024-09-07 19:50:46 +0200[diff] [blame]12674 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12675 psk=73776f726466697368" \
12676 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12677 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12678 0 \
12679 -s "Extra-header:" \
12680 -c "HTTP/1.0 200 OK"
12681
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12682client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12683run_test "DTLS proxy: 3d, \"short\" RSA handshake" \
12684 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12685 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none" \
12686 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12687 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
12688 0 \
12689 -s "Extra-header:" \
12690 -c "HTTP/1.0 200 OK"
12691
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12692client_needs_more_time 2
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12693requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12694run_test "DTLS proxy: 3d, \"short\" (no ticket, no cli_auth) FS handshake" \
12695 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12696 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none" \
12697 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12698 0 \
12699 -s "Extra-header:" \
12700 -c "HTTP/1.0 200 OK"
12701
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12702client_needs_more_time 2
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12703requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12704run_test "DTLS proxy: 3d, FS, client auth" \
12705 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12706 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=required" \
12707 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12708 0 \
12709 -s "Extra-header:" \
12710 -c "HTTP/1.0 200 OK"
12711
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12712client_needs_more_time 2
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12713requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]12714requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12715run_test "DTLS proxy: 3d, FS, ticket" \
12716 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12717 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1 auth_mode=none" \
12718 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12719 0 \
12720 -s "Extra-header:" \
12721 -c "HTTP/1.0 200 OK"
12722
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12723client_needs_more_time 2
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12724requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]12725requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12726run_test "DTLS proxy: 3d, max handshake (FS, ticket + client auth)" \
12727 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12728 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1 auth_mode=required" \
12729 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12730 0 \
12731 -s "Extra-header:" \
12732 -c "HTTP/1.0 200 OK"
12733
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12734client_needs_more_time 2
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12735requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]12736requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12737run_test "DTLS proxy: 3d, max handshake, nbio" \
12738 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12739 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 nbio=2 tickets=1 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]12740 auth_mode=required" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12741 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 nbio=2 tickets=1" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12742 0 \
12743 -s "Extra-header:" \
12744 -c "HTTP/1.0 200 OK"
12745
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12746client_needs_more_time 4
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]12747requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard7a26d732014-10-02 14:50:46 +0200[diff] [blame]12748run_test "DTLS proxy: 3d, min handshake, resumption" \
12749 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12750 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12751 psk=73776f726466697368 debug_level=3" \
12752 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]12753 debug_level=3 reconnect=1 skip_close_notify=1 read_timeout=1000 max_resend=10 \
Manuel Pégourié-Gonnard7a26d732014-10-02 14:50:46 +0200[diff] [blame]12754 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12755 0 \
12756 -s "a session has been resumed" \
12757 -c "a session has been resumed" \
12758 -s "Extra-header:" \
12759 -c "HTTP/1.0 200 OK"
12760
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12761client_needs_more_time 4
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]12762requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard85beb302014-10-02 17:59:19 +0200[diff] [blame]12763run_test "DTLS proxy: 3d, min handshake, resumption, nbio" \
12764 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12765 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12766 psk=73776f726466697368 debug_level=3 nbio=2" \
12767 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]12768 debug_level=3 reconnect=1 skip_close_notify=1 read_timeout=1000 max_resend=10 \
Manuel Pégourié-Gonnard85beb302014-10-02 17:59:19 +0200[diff] [blame]12769 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8 nbio=2" \
12770 0 \
12771 -s "a session has been resumed" \
12772 -c "a session has been resumed" \
12773 -s "Extra-header:" \
12774 -c "HTTP/1.0 200 OK"
12775
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12776client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]12777requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12778run_test "DTLS proxy: 3d, min handshake, client-initiated renego" \
Manuel Pégourié-Gonnard1b753f12014-09-25 16:09:36 +0200[diff] [blame]12779 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12780 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12781 psk=73776f726466697368 renegotiation=1 debug_level=2" \
12782 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]12783 renegotiate=1 debug_level=2 \
Manuel Pégourié-Gonnard1b753f12014-09-25 16:09:36 +0200[diff] [blame]12784 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12785 0 \
12786 -c "=> renegotiate" \
12787 -s "=> renegotiate" \
12788 -s "Extra-header:" \
12789 -c "HTTP/1.0 200 OK"
12790
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12791client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]12792requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12793run_test "DTLS proxy: 3d, min handshake, client-initiated renego, nbio" \
12794 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12795 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12796 psk=73776f726466697368 renegotiation=1 debug_level=2" \
12797 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]12798 renegotiate=1 debug_level=2 \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12799 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12800 0 \
12801 -c "=> renegotiate" \
12802 -s "=> renegotiate" \
12803 -s "Extra-header:" \
12804 -c "HTTP/1.0 200 OK"
12805
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12806client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]12807requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12808run_test "DTLS proxy: 3d, min handshake, server-initiated renego" \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]12809 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12810 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12811 psk=73776f726466697368 renegotiate=1 renegotiation=1 exchanges=4 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12812 debug_level=2" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12813 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]12814 renegotiation=1 exchanges=4 debug_level=2 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12815 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12816 0 \
12817 -c "=> renegotiate" \
12818 -s "=> renegotiate" \
12819 -s "Extra-header:" \
12820 -c "HTTP/1.0 200 OK"
12821
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12822client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]12823requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12824run_test "DTLS proxy: 3d, min handshake, server-initiated renego, nbio" \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]12825 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12826 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12827 psk=73776f726466697368 renegotiate=1 renegotiation=1 exchanges=4 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12828 debug_level=2 nbio=2" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12829 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]12830 renegotiation=1 exchanges=4 debug_level=2 nbio=2 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12831 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12832 0 \
12833 -c "=> renegotiate" \
12834 -s "=> renegotiate" \
12835 -s "Extra-header:" \
12836 -c "HTTP/1.0 200 OK"
12837
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]12838## The three tests below require 1.1.1a or higher version of openssl, otherwise
12839## it might trigger a bug due to openssl (https://github.com/openssl/openssl/issues/6902)
12840## Besides, openssl should use dtls1_2 or dtls, otherwise it will cause "SSL alert number 70" error
12841requires_openssl_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12842client_needs_more_time 6
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12843not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12844requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12845run_test "DTLS proxy: 3d, openssl server" \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]12846 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
Valerio Setti2f8eb622023-03-16 13:04:44 +0100[diff] [blame]12847 "$O_NEXT_SRV -dtls1_2 -mtu 2048" \
12848 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 tickets=0" \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]12849 0 \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]12850 -c "HTTP/1.0 200 OK"
12851
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]12852requires_openssl_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12853client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12854not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12855requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12856run_test "DTLS proxy: 3d, openssl server, fragmentation" \
12857 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]12858 "$O_NEXT_SRV -dtls1_2 -mtu 768" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12859 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 tickets=0" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12860 0 \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12861 -c "HTTP/1.0 200 OK"
12862
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]12863requires_openssl_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12864client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12865not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12866requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12867run_test "DTLS proxy: 3d, openssl server, fragmentation, nbio" \
12868 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]12869 "$O_NEXT_SRV -dtls1_2 -mtu 768" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12870 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 nbio=2 tickets=0" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12871 0 \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12872 -c "HTTP/1.0 200 OK"
12873
Manuel Pégourié-Gonnard96999962015-02-17 16:02:37 +0000[diff] [blame]12874requires_gnutls
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12875client_needs_more_time 6
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12876not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12877requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12878run_test "DTLS proxy: 3d, gnutls server" \
12879 -p "$P_PXY drop=5 delay=5 duplicate=5" \
12880 "$G_SRV -u --mtu 2048 -a" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12881 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12882 0 \
12883 -s "Extra-header:" \
12884 -c "Extra-header:"
12885
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]12886requires_gnutls_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12887client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12888not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12889requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12890run_test "DTLS proxy: 3d, gnutls server, fragmentation" \
12891 -p "$P_PXY drop=5 delay=5 duplicate=5" \
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]12892 "$G_NEXT_SRV -u --mtu 512" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12893 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12894 0 \
12895 -s "Extra-header:" \
12896 -c "Extra-header:"
12897
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]12898requires_gnutls_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12899client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12900not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12901requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12902run_test "DTLS proxy: 3d, gnutls server, fragmentation, nbio" \
12903 -p "$P_PXY drop=5 delay=5 duplicate=5" \
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]12904 "$G_NEXT_SRV -u --mtu 512" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12905 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 nbio=2" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12906 0 \
12907 -s "Extra-header:" \
12908 -c "Extra-header:"
12909
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12910requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorf75e2522019-05-14 20:38:49 +0300[diff] [blame]12911run_test "export keys functionality" \
12912 "$P_SRV eap_tls=1 debug_level=3" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]12913 "$P_CLI force_version=tls12 eap_tls=1 debug_level=3" \
Ron Eldorf75e2522019-05-14 20:38:49 +0300[diff] [blame]12914 0 \
Ron Eldor65d8c262019-06-04 13:05:36 +0300[diff] [blame]12915 -c "EAP-TLS key material is:"\
12916 -s "EAP-TLS key material is:"\
12917 -c "EAP-TLS IV is:" \
12918 -s "EAP-TLS IV is:"
Ron Eldorf75e2522019-05-14 20:38:49 +0300[diff] [blame]12919
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]12920# openssl feature tests: check if tls1.3 exists.
12921requires_openssl_tls1_3
Jerry Yuc502dff2021-12-03 10:04:08 +0800[diff] [blame]12922run_test "TLS 1.3: Test openssl tls1_3 feature" \
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]12923 "$O_NEXT_SRV -tls1_3 -msg" \
12924 "$O_NEXT_CLI -tls1_3 -msg" \
12925 0 \
12926 -c "TLS 1.3" \
12927 -s "TLS 1.3"
12928
Jerry Yu75261df2021-09-02 17:40:08 +0800[diff] [blame]12929# gnutls feature tests: check if TLS 1.3 is supported as well as the NO_TICKETS and DISABLE_TLS13_COMPAT_MODE options.
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]12930requires_gnutls_tls1_3
Jerry Yub12d81d2021-08-17 10:56:08 +0800[diff] [blame]12931requires_gnutls_next_no_ticket
12932requires_gnutls_next_disable_tls13_compat
Jerry Yuc502dff2021-12-03 10:04:08 +0800[diff] [blame]12933run_test "TLS 1.3: Test gnutls tls1_3 feature" \
Jerry Yu937ac672021-10-28 17:39:28 +0800[diff] [blame]12934 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE --disable-client-cert " \
Jerry Yub12d81d2021-08-17 10:56:08 +0800[diff] [blame]12935 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]12936 0 \
12937 -s "Version: TLS1.3" \
12938 -c "Version: TLS1.3"
12939
Jerry Yuc46e9b42021-08-06 11:22:24 +0800[diff] [blame]12940# TLS1.3 test cases
Ronald Cronb18c67a2023-02-16 16:57:16 +0100[diff] [blame]12941requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
12942requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]12943requires_ciphersuite_enabled TLS1-3-CHACHA20-POLY1305-SHA256
Valerio Setticf29c5d2023-09-01 09:03:41 +0200[diff] [blame]12944requires_any_configs_enabled "PSA_WANT_ECC_MONTGOMERY_255"
12945requires_any_configs_enabled "PSA_WANT_ECC_SECP_R1_256"
Ronald Cronb18c67a2023-02-16 16:57:16 +0100[diff] [blame]12946run_test "TLS 1.3: Default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]12947 "$P_SRV allow_sha1=0 debug_level=3 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key force_version=tls13" \
Ronald Cronb18c67a2023-02-16 16:57:16 +0100[diff] [blame]12948 "$P_CLI allow_sha1=0" \
12949 0 \
12950 -s "Protocol is TLSv1.3" \
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]12951 -s "Ciphersuite is TLS1-3-CHACHA20-POLY1305-SHA256" \
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]12952 -s "ECDH/FFDH group: " \
Ronald Cronb18c67a2023-02-16 16:57:16 +0100[diff] [blame]12953 -s "selected signature algorithm ecdsa_secp256r1_sha256"
12954
Ronald Cron587cfe62024-02-08 08:56:09 +0100[diff] [blame]12955requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
12956requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
12957requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
12958requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
12959run_test "Establish TLS 1.2 then TLS 1.3 session" \
12960 "$P_SRV" \
12961 "( $P_CLI force_version=tls12; \
12962 $P_CLI force_version=tls13 )" \
12963 0 \
12964 -s "Protocol is TLSv1.2" \
12965 -s "Protocol is TLSv1.3" \
12966
Ronald Cron90abb222024-02-08 09:02:49 +0100[diff] [blame]12967requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
12968requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
12969requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
12970requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
12971run_test "Establish TLS 1.3 then TLS 1.2 session" \
12972 "$P_SRV" \
12973 "( $P_CLI force_version=tls13; \
12974 $P_CLI force_version=tls12 )" \
12975 0 \
12976 -s "Protocol is TLSv1.3" \
12977 -s "Protocol is TLSv1.2" \
12978
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]12979requires_openssl_tls1_3_with_compatible_ephemeral
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]12980requires_config_enabled MBEDTLS_DEBUG_C
12981requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]12982requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuc502dff2021-12-03 10:04:08 +0800[diff] [blame]12983run_test "TLS 1.3: minimal feature sets - openssl" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]12984 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]12985 "$P_CLI debug_level=3" \
Jerry Yue1b1e2d2021-10-29 17:46:32 +0800[diff] [blame]12986 0 \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]12987 -c "client state: MBEDTLS_SSL_HELLO_REQUEST" \
12988 -c "client state: MBEDTLS_SSL_SERVER_HELLO" \
12989 -c "client state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
12990 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
12991 -c "client state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
12992 -c "client state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
12993 -c "client state: MBEDTLS_SSL_SERVER_FINISHED" \
12994 -c "client state: MBEDTLS_SSL_CLIENT_FINISHED" \
12995 -c "client state: MBEDTLS_SSL_FLUSH_BUFFERS" \
12996 -c "client state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
Xiaofei Bai746f9482021-11-12 08:53:56 +0000[diff] [blame]12997 -c "<= ssl_tls13_process_server_hello" \
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]12998 -c "server hello, chosen ciphersuite: ( 1303 ) - TLS1-3-CHACHA20-POLY1305-SHA256" \
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]12999 -c "DHE group name: " \
Xiaofei Bai746f9482021-11-12 08:53:56 +0000[diff] [blame]13000 -c "=> ssl_tls13_process_server_hello" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13001 -c "<= parse encrypted extensions" \
Jerry Yu834886d2021-10-30 13:26:15 +0800[diff] [blame]13002 -c "Certificate verification flags clear" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13003 -c "=> parse certificate verify" \
13004 -c "<= parse certificate verify" \
XiaokangQiand0aa3e92021-11-10 06:17:40 +0000[diff] [blame]13005 -c "mbedtls_ssl_tls13_process_certificate_verify() returned 0" \
Jerry Yu6d38c192021-11-15 14:01:04 +0800[diff] [blame]13006 -c "<= parse finished message" \
Gilles Peskinec63a1e02022-01-13 01:10:24 +0100[diff] [blame]13007 -c "Protocol is TLSv1.3" \
Jerry Yu6d38c192021-11-15 14:01:04 +0800[diff] [blame]13008 -c "HTTP/1.0 200 ok"
Jerry Yued2ef2d2021-08-19 18:11:43 +0800[diff] [blame]13009
Jerry Yu76e31ec2021-09-22 21:16:27 +0800[diff] [blame]13010requires_gnutls_tls1_3
Jerry Yu937ac672021-10-28 17:39:28 +0800[diff] [blame]13011requires_gnutls_next_no_ticket
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]13012requires_config_enabled MBEDTLS_DEBUG_C
13013requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13014requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuc502dff2021-12-03 10:04:08 +0800[diff] [blame]13015run_test "TLS 1.3: minimal feature sets - gnutls" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13016 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --disable-client-cert" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13017 "$P_CLI debug_level=3" \
Jerry Yue1b1e2d2021-10-29 17:46:32 +0800[diff] [blame]13018 0 \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13019 -s "SERVER HELLO was queued" \
13020 -c "client state: MBEDTLS_SSL_HELLO_REQUEST" \
13021 -c "client state: MBEDTLS_SSL_SERVER_HELLO" \
13022 -c "client state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13023 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13024 -c "client state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
13025 -c "client state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13026 -c "client state: MBEDTLS_SSL_SERVER_FINISHED" \
13027 -c "client state: MBEDTLS_SSL_CLIENT_FINISHED" \
13028 -c "client state: MBEDTLS_SSL_FLUSH_BUFFERS" \
13029 -c "client state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
Xiaofei Bai746f9482021-11-12 08:53:56 +0000[diff] [blame]13030 -c "<= ssl_tls13_process_server_hello" \
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]13031 -c "server hello, chosen ciphersuite: ( 1303 ) - TLS1-3-CHACHA20-POLY1305-SHA256" \
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]13032 -c "DHE group name: " \
Xiaofei Bai746f9482021-11-12 08:53:56 +0000[diff] [blame]13033 -c "=> ssl_tls13_process_server_hello" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13034 -c "<= parse encrypted extensions" \
Jerry Yu834886d2021-10-30 13:26:15 +0800[diff] [blame]13035 -c "Certificate verification flags clear" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13036 -c "=> parse certificate verify" \
13037 -c "<= parse certificate verify" \
XiaokangQiand0aa3e92021-11-10 06:17:40 +0000[diff] [blame]13038 -c "mbedtls_ssl_tls13_process_certificate_verify() returned 0" \
Jerry Yu6d38c192021-11-15 14:01:04 +0800[diff] [blame]13039 -c "<= parse finished message" \
Gilles Peskine860429f2022-02-12 00:44:48 +0100[diff] [blame]13040 -c "Protocol is TLSv1.3" \
Jerry Yu6d38c192021-11-15 14:01:04 +0800[diff] [blame]13041 -c "HTTP/1.0 200 OK"
XiaokangQiand0aa3e92021-11-10 06:17:40 +0000[diff] [blame]13042
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13043requires_openssl_tls1_3_with_compatible_ephemeral
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13044requires_config_enabled MBEDTLS_DEBUG_C
13045requires_config_enabled MBEDTLS_SSL_CLI_C
13046requires_config_enabled MBEDTLS_SSL_ALPN
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13047requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13048run_test "TLS 1.3: alpn - openssl" \
13049 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -alpn h2" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13050 "$P_CLI debug_level=3 alpn=h2" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13051 0 \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13052 -c "client state: MBEDTLS_SSL_HELLO_REQUEST" \
13053 -c "client state: MBEDTLS_SSL_SERVER_HELLO" \
13054 -c "client state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13055 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13056 -c "client state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
13057 -c "client state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13058 -c "client state: MBEDTLS_SSL_SERVER_FINISHED" \
13059 -c "client state: MBEDTLS_SSL_CLIENT_FINISHED" \
13060 -c "client state: MBEDTLS_SSL_FLUSH_BUFFERS" \
13061 -c "client state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13062 -c "<= ssl_tls13_process_server_hello" \
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]13063 -c "server hello, chosen ciphersuite: ( 1303 ) - TLS1-3-CHACHA20-POLY1305-SHA256" \
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]13064 -c "DHE group name: " \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13065 -c "=> ssl_tls13_process_server_hello" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13066 -c "<= parse encrypted extensions" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13067 -c "Certificate verification flags clear" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13068 -c "=> parse certificate verify" \
13069 -c "<= parse certificate verify" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13070 -c "mbedtls_ssl_tls13_process_certificate_verify() returned 0" \
13071 -c "<= parse finished message" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13072 -c "Protocol is TLSv1.3" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13073 -c "HTTP/1.0 200 ok" \
13074 -c "Application Layer Protocol is h2"
13075
13076requires_gnutls_tls1_3
13077requires_gnutls_next_no_ticket
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13078requires_config_enabled MBEDTLS_DEBUG_C
13079requires_config_enabled MBEDTLS_SSL_CLI_C
13080requires_config_enabled MBEDTLS_SSL_ALPN
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13081requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13082run_test "TLS 1.3: alpn - gnutls" \
13083 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --disable-client-cert --alpn=h2" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13084 "$P_CLI debug_level=3 alpn=h2" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13085 0 \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13086 -s "SERVER HELLO was queued" \
13087 -c "client state: MBEDTLS_SSL_HELLO_REQUEST" \
13088 -c "client state: MBEDTLS_SSL_SERVER_HELLO" \
13089 -c "client state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13090 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13091 -c "client state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
13092 -c "client state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13093 -c "client state: MBEDTLS_SSL_SERVER_FINISHED" \
13094 -c "client state: MBEDTLS_SSL_CLIENT_FINISHED" \
13095 -c "client state: MBEDTLS_SSL_FLUSH_BUFFERS" \
13096 -c "client state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13097 -c "<= ssl_tls13_process_server_hello" \
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]13098 -c "server hello, chosen ciphersuite: ( 1303 ) - TLS1-3-CHACHA20-POLY1305-SHA256" \
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]13099 -c "DHE group name: " \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13100 -c "=> ssl_tls13_process_server_hello" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13101 -c "<= parse encrypted extensions" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13102 -c "Certificate verification flags clear" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13103 -c "=> parse certificate verify" \
13104 -c "<= parse certificate verify" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13105 -c "mbedtls_ssl_tls13_process_certificate_verify() returned 0" \
13106 -c "<= parse finished message" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13107 -c "Protocol is TLSv1.3" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13108 -c "HTTP/1.0 200 OK" \
13109 -c "Application Layer Protocol is h2"
13110
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13111requires_openssl_tls1_3_with_compatible_ephemeral
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]13112requires_config_enabled MBEDTLS_DEBUG_C
XiaokangQian95d5f542022-06-24 02:29:26 +0000[diff] [blame]13113requires_config_enabled MBEDTLS_SSL_SRV_C
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]13114requires_config_enabled MBEDTLS_SSL_ALPN
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13115requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]13116run_test "TLS 1.3: server alpn - openssl" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13117 "$P_SRV debug_level=3 tickets=0 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key alpn=h2" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]13118 "$O_NEXT_CLI -msg -tls1_3 -no_middlebox -alpn h2" \
13119 0 \
XiaokangQianc7403452022-06-23 03:24:12 +0000[diff] [blame]13120 -s "found alpn extension" \
13121 -s "server side, adding alpn extension" \
13122 -s "Protocol is TLSv1.3" \
13123 -s "HTTP/1.0 200 OK" \
13124 -s "Application Layer Protocol is h2"
13125
13126requires_gnutls_tls1_3
XiaokangQianc7403452022-06-23 03:24:12 +0000[diff] [blame]13127requires_config_enabled MBEDTLS_DEBUG_C
XiaokangQian95d5f542022-06-24 02:29:26 +0000[diff] [blame]13128requires_config_enabled MBEDTLS_SSL_SRV_C
XiaokangQianc7403452022-06-23 03:24:12 +0000[diff] [blame]13129requires_config_enabled MBEDTLS_SSL_ALPN
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13130requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQianc7403452022-06-23 03:24:12 +0000[diff] [blame]13131run_test "TLS 1.3: server alpn - gnutls" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13132 "$P_SRV debug_level=3 tickets=0 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key alpn=h2" \
XiaokangQianc7403452022-06-23 03:24:12 +0000[diff] [blame]13133 "$G_NEXT_CLI localhost -d 4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V --alpn h2" \
13134 0 \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]13135 -s "found alpn extension" \
13136 -s "server side, adding alpn extension" \
13137 -s "Protocol is TLSv1.3" \
13138 -s "HTTP/1.0 200 OK" \
13139 -s "Application Layer Protocol is h2"
13140
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13141requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaa6214a2022-01-30 19:53:28 +0800[diff] [blame]13142requires_config_enabled MBEDTLS_DEBUG_C
13143requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13144requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13145run_test "TLS 1.3: Client authentication, no client certificate - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13146 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -verify 10" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13147 "$P_CLI debug_level=4 crt_file=none key_file=none" \
Jerry Yuaa6214a2022-01-30 19:53:28 +0800[diff] [blame]13148 0 \
Jerry Yuaa6214a2022-01-30 19:53:28 +0800[diff] [blame]13149 -c "got a certificate request" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13150 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13151 -s "TLS 1.3" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13152 -c "HTTP/1.0 200 ok" \
13153 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13154
13155requires_gnutls_tls1_3
13156requires_gnutls_next_no_ticket
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13157requires_config_enabled MBEDTLS_DEBUG_C
13158requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13159requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13160run_test "TLS 1.3: Client authentication, no client certificate - gnutls" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13161 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --verify-client-cert" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13162 "$P_CLI debug_level=3 crt_file=none key_file=none" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13163 0 \
13164 -c "got a certificate request" \
13165 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE"\
13166 -s "Version: TLS1.3" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13167 -c "HTTP/1.0 200 OK" \
13168 -c "Protocol is TLSv1.3"
13169
Jerry Yuaa6214a2022-01-30 19:53:28 +0800[diff] [blame]13170
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13171requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13172requires_config_enabled MBEDTLS_DEBUG_C
13173requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13174requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13175run_test "TLS 1.3: Client authentication, no server middlebox compat - openssl" \
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13176 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10 -no_middlebox" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13177 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cli2.crt key_file=$DATA_FILES_PATH/cli2.key" \
Jerry Yuc19884f2022-01-29 10:44:44 +0800[diff] [blame]13178 0 \
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13179 -c "got a certificate request" \
Jerry Yu200b47b2022-01-28 14:26:30 +0800[diff] [blame]13180 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13181 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13182 -c "Protocol is TLSv1.3"
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13183
13184requires_gnutls_tls1_3
13185requires_gnutls_next_no_ticket
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13186requires_config_enabled MBEDTLS_DEBUG_C
13187requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13188requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13189run_test "TLS 1.3: Client authentication, no server middlebox compat - gnutls" \
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13190 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13191 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/cli2.crt \
13192 key_file=$DATA_FILES_PATH/cli2.key" \
Jerry Yuc19884f2022-01-29 10:44:44 +0800[diff] [blame]13193 0 \
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13194 -c "got a certificate request" \
Jerry Yu200b47b2022-01-28 14:26:30 +0800[diff] [blame]13195 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13196 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13197 -c "Protocol is TLSv1.3"
Jerry Yu200b47b2022-01-28 14:26:30 +0800[diff] [blame]13198
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13199requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu200b47b2022-01-28 14:26:30 +0800[diff] [blame]13200requires_config_enabled MBEDTLS_DEBUG_C
13201requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13202requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13203run_test "TLS 1.3: Client authentication, ecdsa_secp256r1_sha256 - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13204 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13205 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp256r1.crt \
13206 key_file=$DATA_FILES_PATH/ecdsa_secp256r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13207 0 \
13208 -c "got a certificate request" \
13209 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13210 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13211 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13212
13213requires_gnutls_tls1_3
13214requires_gnutls_next_no_ticket
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13215requires_config_enabled MBEDTLS_DEBUG_C
13216requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13217requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13218run_test "TLS 1.3: Client authentication, ecdsa_secp256r1_sha256 - gnutls" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13219 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13220 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp256r1.crt \
13221 key_file=$DATA_FILES_PATH/ecdsa_secp256r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13222 0 \
13223 -c "got a certificate request" \
13224 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13225 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13226 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13227
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13228requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13229requires_config_enabled MBEDTLS_DEBUG_C
13230requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13231requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13232run_test "TLS 1.3: Client authentication, ecdsa_secp384r1_sha384 - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13233 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13234 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp384r1.crt \
13235 key_file=$DATA_FILES_PATH/ecdsa_secp384r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13236 0 \
13237 -c "got a certificate request" \
13238 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13239 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13240 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13241
13242requires_gnutls_tls1_3
13243requires_gnutls_next_no_ticket
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13244requires_config_enabled MBEDTLS_DEBUG_C
13245requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13246requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13247run_test "TLS 1.3: Client authentication, ecdsa_secp384r1_sha384 - gnutls" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13248 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13249 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp384r1.crt \
13250 key_file=$DATA_FILES_PATH/ecdsa_secp384r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13251 0 \
13252 -c "got a certificate request" \
13253 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13254 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13255 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13256
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13257requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13258requires_config_enabled MBEDTLS_DEBUG_C
13259requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13260requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13261run_test "TLS 1.3: Client authentication, ecdsa_secp521r1_sha512 - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13262 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13263 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13264 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13265 0 \
13266 -c "got a certificate request" \
13267 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13268 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13269 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13270
13271requires_gnutls_tls1_3
13272requires_gnutls_next_no_ticket
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13273requires_config_enabled MBEDTLS_DEBUG_C
13274requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13275requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13276run_test "TLS 1.3: Client authentication, ecdsa_secp521r1_sha512 - gnutls" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13277 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13278 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13279 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13280 0 \
13281 -c "got a certificate request" \
13282 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13283 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13284 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13285
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13286requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13287requires_config_enabled MBEDTLS_DEBUG_C
13288requires_config_enabled MBEDTLS_SSL_CLI_C
13289requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13290requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13291run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha256 - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13292 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13293 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13294 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha256" \
Jerry Yu919130c2022-02-23 10:40:19 +0800[diff] [blame]13295 0 \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13296 -c "got a certificate request" \
13297 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13298 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Jerry Yu919130c2022-02-23 10:40:19 +0800[diff] [blame]13299 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13300
13301requires_gnutls_tls1_3
13302requires_gnutls_next_no_ticket
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13303requires_config_enabled MBEDTLS_DEBUG_C
13304requires_config_enabled MBEDTLS_SSL_CLI_C
13305requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13306requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13307run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha256 - gnutls" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13308 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13309 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13310 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha256" \
Jerry Yu919130c2022-02-23 10:40:19 +0800[diff] [blame]13311 0 \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13312 -c "got a certificate request" \
13313 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13314 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Jerry Yu919130c2022-02-23 10:40:19 +0800[diff] [blame]13315 -c "Protocol is TLSv1.3"
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13316
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13317requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13318requires_config_enabled MBEDTLS_DEBUG_C
13319requires_config_enabled MBEDTLS_SSL_CLI_C
13320requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13321requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13322run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha384 - openssl" \
13323 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13324 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13325 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha384" \
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13326 0 \
13327 -c "got a certificate request" \
13328 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13329 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13330 -c "Protocol is TLSv1.3"
13331
13332requires_gnutls_tls1_3
13333requires_gnutls_next_no_ticket
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13334requires_config_enabled MBEDTLS_DEBUG_C
13335requires_config_enabled MBEDTLS_SSL_CLI_C
13336requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13337requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13338run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha384 - gnutls" \
13339 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13340 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13341 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha384" \
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13342 0 \
13343 -c "got a certificate request" \
13344 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13345 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13346 -c "Protocol is TLSv1.3"
13347
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13348requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13349requires_config_enabled MBEDTLS_DEBUG_C
13350requires_config_enabled MBEDTLS_SSL_CLI_C
13351requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13352requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13353run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha512 - openssl" \
13354 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13355 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13356 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha512" \
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13357 0 \
13358 -c "got a certificate request" \
13359 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13360 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13361 -c "Protocol is TLSv1.3"
13362
13363requires_gnutls_tls1_3
13364requires_gnutls_next_no_ticket
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13365requires_config_enabled MBEDTLS_DEBUG_C
13366requires_config_enabled MBEDTLS_SSL_CLI_C
13367requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13368requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13369run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha512 - gnutls" \
13370 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13371 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13372 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha512" \
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13373 0 \
13374 -c "got a certificate request" \
13375 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13376 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13377 -c "Protocol is TLSv1.3"
13378
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13379requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13380requires_config_enabled MBEDTLS_DEBUG_C
13381requires_config_enabled MBEDTLS_SSL_CLI_C
13382requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13383requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuccb005e2022-02-22 17:38:34 +0800[diff] [blame]13384run_test "TLS 1.3: Client authentication, client alg not in server list - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13385 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13386 -sigalgs ecdsa_secp256r1_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13387 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13388 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key sig_algs=ecdsa_secp256r1_sha256,ecdsa_secp521r1_sha512" \
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13389 1 \
13390 -c "got a certificate request" \
13391 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13392 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Xiaokang Qianea3d9332022-12-07 06:19:49 +0000[diff] [blame]13393 -c "no suitable signature algorithm"
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13394
13395requires_gnutls_tls1_3
13396requires_gnutls_next_no_ticket
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13397requires_config_enabled MBEDTLS_DEBUG_C
13398requires_config_enabled MBEDTLS_SSL_CLI_C
13399requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13400requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13401run_test "TLS 1.3: Client authentication, client alg not in server list - gnutls" \
13402 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:-SIGN-ALL:+SIGN-ECDSA-SECP256R1-SHA256:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13403 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13404 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key sig_algs=ecdsa_secp256r1_sha256,ecdsa_secp521r1_sha512" \
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13405 1 \
13406 -c "got a certificate request" \
13407 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13408 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Xiaokang Qianea3d9332022-12-07 06:19:49 +0000[diff] [blame]13409 -c "no suitable signature algorithm"
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13410
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13411# Test using an opaque private key for client authentication
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13412requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13413requires_config_enabled MBEDTLS_DEBUG_C
13414requires_config_enabled MBEDTLS_SSL_CLI_C
13415requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13416requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13417run_test "TLS 1.3: Client authentication - opaque key, no server middlebox compat - openssl" \
13418 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10 -no_middlebox" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13419 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cli2.crt key_file=$DATA_FILES_PATH/cli2.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13420 0 \
13421 -c "got a certificate request" \
13422 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13423 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13424 -c "Protocol is TLSv1.3"
13425
13426requires_gnutls_tls1_3
13427requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13428requires_config_enabled MBEDTLS_DEBUG_C
13429requires_config_enabled MBEDTLS_SSL_CLI_C
13430requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13431requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13432run_test "TLS 1.3: Client authentication - opaque key, no server middlebox compat - gnutls" \
13433 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13434 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/cli2.crt \
13435 key_file=$DATA_FILES_PATH/cli2.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13436 0 \
13437 -c "got a certificate request" \
13438 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13439 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13440 -c "Protocol is TLSv1.3"
13441
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13442requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13443requires_config_enabled MBEDTLS_DEBUG_C
13444requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13445requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13446requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13447run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp256r1_sha256 - openssl" \
13448 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13449 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp256r1.crt \
13450 key_file=$DATA_FILES_PATH/ecdsa_secp256r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13451 0 \
13452 -c "got a certificate request" \
13453 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13454 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13455 -c "Protocol is TLSv1.3"
13456
13457requires_gnutls_tls1_3
13458requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13459requires_config_enabled MBEDTLS_DEBUG_C
13460requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13461requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13462requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13463run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp256r1_sha256 - gnutls" \
13464 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13465 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp256r1.crt \
13466 key_file=$DATA_FILES_PATH/ecdsa_secp256r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13467 0 \
13468 -c "got a certificate request" \
13469 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13470 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13471 -c "Protocol is TLSv1.3"
13472
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13473requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13474requires_config_enabled MBEDTLS_DEBUG_C
13475requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13476requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13477requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13478run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp384r1_sha384 - openssl" \
13479 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13480 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp384r1.crt \
13481 key_file=$DATA_FILES_PATH/ecdsa_secp384r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13482 0 \
13483 -c "got a certificate request" \
13484 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13485 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13486 -c "Protocol is TLSv1.3"
13487
13488requires_gnutls_tls1_3
13489requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13490requires_config_enabled MBEDTLS_DEBUG_C
13491requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13492requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13493requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13494run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp384r1_sha384 - gnutls" \
13495 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13496 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp384r1.crt \
13497 key_file=$DATA_FILES_PATH/ecdsa_secp384r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13498 0 \
13499 -c "got a certificate request" \
13500 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13501 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13502 -c "Protocol is TLSv1.3"
13503
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13504requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13505requires_config_enabled MBEDTLS_DEBUG_C
13506requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13507requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13508requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13509run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp521r1_sha512 - openssl" \
13510 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13511 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13512 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13513 0 \
13514 -c "got a certificate request" \
13515 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13516 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13517 -c "Protocol is TLSv1.3"
13518
13519requires_gnutls_tls1_3
13520requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13521requires_config_enabled MBEDTLS_DEBUG_C
13522requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13523requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13524requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13525run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp521r1_sha512 - gnutls" \
13526 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13527 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13528 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13529 0 \
13530 -c "got a certificate request" \
13531 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13532 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13533 -c "Protocol is TLSv1.3"
13534
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13535requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13536requires_config_enabled MBEDTLS_DEBUG_C
13537requires_config_enabled MBEDTLS_SSL_CLI_C
13538requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13539requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13540requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13541run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha256 - openssl" \
13542 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13543 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13544 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha256 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13545 0 \
13546 -c "got a certificate request" \
13547 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13548 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13549 -c "Protocol is TLSv1.3"
13550
13551requires_gnutls_tls1_3
13552requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13553requires_config_enabled MBEDTLS_DEBUG_C
13554requires_config_enabled MBEDTLS_SSL_CLI_C
13555requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13556requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13557requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13558run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha256 - gnutls" \
13559 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13560 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13561 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha256 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13562 0 \
13563 -c "got a certificate request" \
13564 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13565 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13566 -c "Protocol is TLSv1.3"
13567
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13568requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13569requires_config_enabled MBEDTLS_DEBUG_C
13570requires_config_enabled MBEDTLS_SSL_CLI_C
13571requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13572requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13573requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13574run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha384 - openssl" \
13575 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13576 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13577 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha384 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13578 0 \
13579 -c "got a certificate request" \
13580 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13581 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13582 -c "Protocol is TLSv1.3"
13583
13584requires_gnutls_tls1_3
13585requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13586requires_config_enabled MBEDTLS_DEBUG_C
13587requires_config_enabled MBEDTLS_SSL_CLI_C
13588requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13589requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13590requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13591run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha384 - gnutls" \
13592 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13593 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13594 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha384 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13595 0 \
13596 -c "got a certificate request" \
13597 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13598 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13599 -c "Protocol is TLSv1.3"
13600
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13601requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13602requires_config_enabled MBEDTLS_DEBUG_C
13603requires_config_enabled MBEDTLS_SSL_CLI_C
13604requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13605requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13606requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13607run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha512 - openssl" \
13608 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13609 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13610 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha512 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13611 0 \
13612 -c "got a certificate request" \
13613 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13614 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13615 -c "Protocol is TLSv1.3"
13616
13617requires_gnutls_tls1_3
13618requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13619requires_config_enabled MBEDTLS_DEBUG_C
13620requires_config_enabled MBEDTLS_SSL_CLI_C
13621requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13622requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13623requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13624run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha512 - gnutls" \
13625 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13626 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13627 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha512 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13628 0 \
13629 -c "got a certificate request" \
13630 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13631 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13632 -c "Protocol is TLSv1.3"
13633
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13634requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13635requires_config_enabled MBEDTLS_DEBUG_C
13636requires_config_enabled MBEDTLS_SSL_CLI_C
13637requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13638requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13639requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13640run_test "TLS 1.3: Client authentication - opaque key, client alg not in server list - openssl" \
13641 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10
13642 -sigalgs ecdsa_secp256r1_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13643 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13644 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key sig_algs=ecdsa_secp256r1_sha256,ecdsa_secp521r1_sha512 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13645 1 \
13646 -c "got a certificate request" \
13647 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13648 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Xiaokang Qianea3d9332022-12-07 06:19:49 +0000[diff] [blame]13649 -c "no suitable signature algorithm"
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13650
13651requires_gnutls_tls1_3
13652requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13653requires_config_enabled MBEDTLS_DEBUG_C
13654requires_config_enabled MBEDTLS_SSL_CLI_C
13655requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13656requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13657requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13658run_test "TLS 1.3: Client authentication - opaque key, client alg not in server list - gnutls" \
13659 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:-SIGN-ALL:+SIGN-ECDSA-SECP256R1-SHA256:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13660 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13661 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key sig_algs=ecdsa_secp256r1_sha256,ecdsa_secp521r1_sha512 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13662 1 \
13663 -c "got a certificate request" \
13664 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13665 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Xiaokang Qianea3d9332022-12-07 06:19:49 +0000[diff] [blame]13666 -c "no suitable signature algorithm"
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13667
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13668requires_openssl_tls1_3_with_compatible_ephemeral
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]13669requires_config_enabled MBEDTLS_DEBUG_C
13670requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13671requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crondf5f8682022-04-05 16:01:03 +0200[diff] [blame]13672run_test "TLS 1.3: HRR check, ciphersuite TLS_AES_128_GCM_SHA256 - openssl" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13673 "$O_NEXT_SRV -ciphersuites TLS_AES_128_GCM_SHA256 -sigalgs ecdsa_secp256r1_sha256 -groups P-256 -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13674 "$P_CLI debug_level=4" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13675 0 \
13676 -c "received HelloRetryRequest message" \
XiaokangQiana9090612022-01-27 03:48:27 +0000[diff] [blame]13677 -c "<= ssl_tls13_process_server_hello ( HelloRetryRequest )" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13678 -c "client state: MBEDTLS_SSL_CLIENT_HELLO" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13679 -c "Protocol is TLSv1.3" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13680 -c "HTTP/1.0 200 ok"
13681
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13682requires_openssl_tls1_3_with_compatible_ephemeral
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13683requires_config_enabled MBEDTLS_DEBUG_C
13684requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13685requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crondf5f8682022-04-05 16:01:03 +0200[diff] [blame]13686run_test "TLS 1.3: HRR check, ciphersuite TLS_AES_256_GCM_SHA384 - openssl" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13687 "$O_NEXT_SRV -ciphersuites TLS_AES_256_GCM_SHA384 -sigalgs ecdsa_secp256r1_sha256 -groups P-256 -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13688 "$P_CLI debug_level=4" \
XiaokangQian6db08dd2022-01-18 06:36:23 +0000[diff] [blame]13689 0 \
Jerry Yu8c5559d2021-11-22 21:15:41 +0800[diff] [blame]13690 -c "received HelloRetryRequest message" \
XiaokangQiana9090612022-01-27 03:48:27 +0000[diff] [blame]13691 -c "<= ssl_tls13_process_server_hello ( HelloRetryRequest )" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13692 -c "client state: MBEDTLS_SSL_CLIENT_HELLO" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13693 -c "Protocol is TLSv1.3" \
XiaokangQian6db08dd2022-01-18 06:36:23 +0000[diff] [blame]13694 -c "HTTP/1.0 200 ok"
Jerry Yu8c5559d2021-11-22 21:15:41 +0800[diff] [blame]13695
13696requires_gnutls_tls1_3
13697requires_gnutls_next_no_ticket
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]13698requires_config_enabled MBEDTLS_DEBUG_C
13699requires_config_enabled MBEDTLS_SSL_CLI_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]13700requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13701requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crondf5f8682022-04-05 16:01:03 +0200[diff] [blame]13702run_test "TLS 1.3: HRR check, ciphersuite TLS_AES_128_GCM_SHA256 - gnutls" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13703 "$G_NEXT_SRV -d 4 --priority=NONE:+GROUP-SECP256R1:+AES-128-GCM:+SHA256:+AEAD:+SIGN-ECDSA-SECP256R1-SHA256:+VERS-TLS1.3:%NO_TICKETS --disable-client-cert" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13704 "$P_CLI debug_level=4" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13705 0 \
13706 -c "received HelloRetryRequest message" \
XiaokangQiana9090612022-01-27 03:48:27 +0000[diff] [blame]13707 -c "<= ssl_tls13_process_server_hello ( HelloRetryRequest )" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13708 -c "client state: MBEDTLS_SSL_CLIENT_HELLO" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13709 -c "Protocol is TLSv1.3" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13710 -c "HTTP/1.0 200 OK"
13711
13712requires_gnutls_tls1_3
13713requires_gnutls_next_no_ticket
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13714requires_config_enabled MBEDTLS_DEBUG_C
13715requires_config_enabled MBEDTLS_SSL_CLI_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]13716requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13717requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crondf5f8682022-04-05 16:01:03 +0200[diff] [blame]13718run_test "TLS 1.3: HRR check, ciphersuite TLS_AES_256_GCM_SHA384 - gnutls" \
XiaokangQian355e09a2022-01-20 11:14:50 +0000[diff] [blame]13719 "$G_NEXT_SRV -d 4 --priority=NONE:+GROUP-SECP256R1:+AES-256-GCM:+SHA384:+AEAD:+SIGN-ECDSA-SECP256R1-SHA256:+VERS-TLS1.3:%NO_TICKETS --disable-client-cert" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13720 "$P_CLI debug_level=4" \
XiaokangQian355e09a2022-01-20 11:14:50 +0000[diff] [blame]13721 0 \
Jerry Yu8c5559d2021-11-22 21:15:41 +0800[diff] [blame]13722 -c "received HelloRetryRequest message" \
XiaokangQiana9090612022-01-27 03:48:27 +0000[diff] [blame]13723 -c "<= ssl_tls13_process_server_hello ( HelloRetryRequest )" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13724 -c "client state: MBEDTLS_SSL_CLIENT_HELLO" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13725 -c "Protocol is TLSv1.3" \
XiaokangQian355e09a2022-01-20 11:14:50 +0000[diff] [blame]13726 -c "HTTP/1.0 200 OK"
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13727
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13728requires_openssl_tls1_3_with_compatible_ephemeral
XiaokangQian5e4528c2022-02-17 07:51:12 +0000[diff] [blame]13729requires_config_enabled MBEDTLS_DEBUG_C
XiaokangQiane8ff3502022-04-22 02:34:40 +0000[diff] [blame]13730requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13731requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQian318dc762022-04-20 09:43:51 +0000[diff] [blame]13732run_test "TLS 1.3: Server side check - openssl" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13733 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Jerry Yu66220492022-04-23 13:53:36 +0800[diff] [blame]13734 "$O_NEXT_CLI -msg -debug -tls1_3 -no_middlebox" \
Jerry Yu4d8567f2022-04-17 10:57:57 +0800[diff] [blame]13735 0 \
Jerry Yuabf20c72022-04-14 18:36:14 +0800[diff] [blame]13736 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13737 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13738 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
Jerry Yucef55db2022-04-23 11:02:05 +0800[diff] [blame]13739 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yuc8bdbf72022-04-23 12:37:35 +0800[diff] [blame]13740 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13741 -s "tls13 server state: MBEDTLS_SSL_SERVER_FINISHED" \
Jerry Yu66220492022-04-23 13:53:36 +0800[diff] [blame]13742 -s "tls13 server state: MBEDTLS_SSL_CLIENT_FINISHED" \
Jerry Yu155493d2022-04-25 13:30:18 +0800[diff] [blame]13743 -s "tls13 server state: MBEDTLS_SSL_HANDSHAKE_WRAPUP"
XiaokangQian5e4528c2022-02-17 07:51:12 +0000[diff] [blame]13744
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13745requires_openssl_tls1_3_with_compatible_ephemeral
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13746requires_config_enabled MBEDTLS_DEBUG_C
13747requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13748requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQiana987e1d2022-05-07 01:25:58 +0000[diff] [blame]13749run_test "TLS 1.3: Server side check - openssl with client authentication" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13750 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
13751 "$O_NEXT_CLI -msg -debug -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key -tls1_3 -no_middlebox" \
XiaokangQian9a4e1dd2022-05-26 00:58:11 +0000[diff] [blame]13752 0 \
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13753 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13754 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13755 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13756 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13757 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yuc4505662022-05-10 20:39:21 +0800[diff] [blame]13758 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13759 -s "tls13 server state: MBEDTLS_SSL_SERVER_FINISHED" \
XiaokangQiana987e1d2022-05-07 01:25:58 +0000[diff] [blame]13760 -s "=> write certificate request" \
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13761 -s "=> parse client hello" \
13762 -s "<= parse client hello"
13763
XiaokangQian5e4528c2022-02-17 07:51:12 +0000[diff] [blame]13764requires_gnutls_tls1_3
13765requires_gnutls_next_no_ticket
XiaokangQian5e4528c2022-02-17 07:51:12 +0000[diff] [blame]13766requires_config_enabled MBEDTLS_DEBUG_C
XiaokangQiane8ff3502022-04-22 02:34:40 +0000[diff] [blame]13767requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13768requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQian318dc762022-04-20 09:43:51 +0000[diff] [blame]13769run_test "TLS 1.3: Server side check - gnutls" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13770 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
XiaokangQian3f84d5d2022-04-19 06:36:17 +0000[diff] [blame]13771 "$G_NEXT_CLI localhost -d 4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Jerry Yu66220492022-04-23 13:53:36 +0800[diff] [blame]13772 0 \
Jerry Yuabf20c72022-04-14 18:36:14 +0800[diff] [blame]13773 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13774 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13775 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
Jerry Yucef55db2022-04-23 11:02:05 +0800[diff] [blame]13776 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yuc8bdbf72022-04-23 12:37:35 +0800[diff] [blame]13777 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13778 -s "tls13 server state: MBEDTLS_SSL_SERVER_FINISHED" \
Jerry Yu66220492022-04-23 13:53:36 +0800[diff] [blame]13779 -s "tls13 server state: MBEDTLS_SSL_CLIENT_FINISHED" \
13780 -s "tls13 server state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
13781 -c "HTTP/1.0 200 OK"
XiaokangQian5e4528c2022-02-17 07:51:12 +0000[diff] [blame]13782
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13783requires_gnutls_tls1_3
13784requires_gnutls_next_no_ticket
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13785requires_config_enabled MBEDTLS_DEBUG_C
13786requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13787requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQiana987e1d2022-05-07 01:25:58 +0000[diff] [blame]13788run_test "TLS 1.3: Server side check - gnutls with client authentication" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13789 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
13790 "$G_NEXT_CLI localhost -d 4 --x509certfile $DATA_FILES_PATH/server5.crt --x509keyfile $DATA_FILES_PATH/server5.key --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
XiaokangQianc3017f62022-05-13 05:55:41 +0000[diff] [blame]13791 0 \
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13792 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13793 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13794 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13795 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13796 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yuc4505662022-05-10 20:39:21 +0800[diff] [blame]13797 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13798 -s "tls13 server state: MBEDTLS_SSL_SERVER_FINISHED" \
XiaokangQiana987e1d2022-05-07 01:25:58 +0000[diff] [blame]13799 -s "=> write certificate request" \
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13800 -s "=> parse client hello" \
13801 -s "<= parse client hello"
13802
Jerry Yu8b9fd372022-04-14 20:55:12 +0800[diff] [blame]13803requires_config_enabled MBEDTLS_DEBUG_C
13804requires_config_enabled MBEDTLS_SSL_SRV_C
Jerry Yu955ddd72022-04-22 22:27:33 +0800[diff] [blame]13805requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13806requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu8b9fd372022-04-14 20:55:12 +0800[diff] [blame]13807run_test "TLS 1.3: Server side check - mbedtls" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13808 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Ronald Cron65f90292023-03-13 17:38:12 +0100[diff] [blame]13809 "$P_CLI debug_level=4" \
XiaokangQianc3017f62022-05-13 05:55:41 +0000[diff] [blame]13810 0 \
Jerry Yu8b9fd372022-04-14 20:55:12 +0800[diff] [blame]13811 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13812 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13813 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
Jerry Yua7abc5e2022-05-11 13:32:03 +0800[diff] [blame]13814 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
Jerry Yucef55db2022-04-23 11:02:05 +0800[diff] [blame]13815 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yua7abc5e2022-05-11 13:32:03 +0800[diff] [blame]13816 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13817 -s "tls13 server state: MBEDTLS_SSL_SERVER_FINISHED" \
13818 -s "tls13 server state: MBEDTLS_SSL_CLIENT_FINISHED" \
13819 -s "tls13 server state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
13820 -c "HTTP/1.0 200 OK"
Jerry Yu8b9fd372022-04-14 20:55:12 +0800[diff] [blame]13821
XiaokangQian45c22202022-05-06 06:54:09 +0000[diff] [blame]13822requires_config_enabled MBEDTLS_DEBUG_C
13823requires_config_enabled MBEDTLS_SSL_SRV_C
13824requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13825requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQiana987e1d2022-05-07 01:25:58 +0000[diff] [blame]13826run_test "TLS 1.3: Server side check - mbedtls with client authentication" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13827 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
13828 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key" \
XiaokangQianc3017f62022-05-13 05:55:41 +0000[diff] [blame]13829 0 \
XiaokangQian45c22202022-05-06 06:54:09 +0000[diff] [blame]13830 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13831 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13832 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13833 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yua7abc5e2022-05-11 13:32:03 +0800[diff] [blame]13834 -s "=> write certificate request" \
XiaokangQian45c22202022-05-06 06:54:09 +0000[diff] [blame]13835 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
XiaokangQian45c22202022-05-06 06:54:09 +0000[diff] [blame]13836 -s "=> parse client hello" \
13837 -s "<= parse client hello"
13838
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13839requires_config_enabled MBEDTLS_DEBUG_C
13840requires_config_enabled MBEDTLS_SSL_SRV_C
13841requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13842requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13843run_test "TLS 1.3: Server side check - mbedtls with client empty certificate" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13844 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Ronald Cron65f90292023-03-13 17:38:12 +0100[diff] [blame]13845 "$P_CLI debug_level=4 crt_file=none key_file=none" \
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13846 1 \
13847 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13848 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13849 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13850 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
13851 -s "=> write certificate request" \
13852 -s "SSL - No client certification received from the client, but required by the authentication mode" \
13853 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13854 -s "=> parse client hello" \
13855 -s "<= parse client hello"
13856
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13857requires_config_enabled MBEDTLS_DEBUG_C
13858requires_config_enabled MBEDTLS_SSL_SRV_C
13859requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13860requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13861run_test "TLS 1.3: Server side check - mbedtls with optional client authentication" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13862 "$P_SRV debug_level=4 auth_mode=optional crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Ronald Cron65f90292023-03-13 17:38:12 +0100[diff] [blame]13863 "$P_CLI debug_level=4 crt_file=none key_file=none" \
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13864 0 \
13865 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13866 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13867 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13868 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
13869 -s "=> write certificate request" \
13870 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13871 -s "=> parse client hello" \
13872 -s "<= parse client hello"
Jerry Yuede50ea2022-05-05 11:21:20 +0800[diff] [blame]13873
13874requires_config_enabled MBEDTLS_DEBUG_C
13875requires_config_enabled MBEDTLS_SSL_CLI_C
13876requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13877requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]13878requires_config_enabled PSA_WANT_ALG_ECDH
Jerry Yuede50ea2022-05-05 11:21:20 +0800[diff] [blame]13879run_test "TLS 1.3: server: HRR check - mbedtls" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]13880 "$P_SRV debug_level=4 groups=secp384r1" \
13881 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Jerry Yu36becb12022-05-12 16:57:20 +0800[diff] [blame]13882 0 \
Jerry Yuede50ea2022-05-05 11:21:20 +0800[diff] [blame]13883 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13884 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13885 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13886 -s "tls13 server state: MBEDTLS_SSL_HELLO_RETRY_REQUEST" \
13887 -c "client state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13888 -s "selected_group: secp384r1" \
Jerry Yuede50ea2022-05-05 11:21:20 +0800[diff] [blame]13889 -s "=> write hello retry request" \
13890 -s "<= write hello retry request"
13891
Jerry Yub89125b2022-05-13 15:45:49 +0800[diff] [blame]13892requires_config_enabled MBEDTLS_DEBUG_C
13893requires_config_enabled MBEDTLS_SSL_SRV_C
13894requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13895requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yub89125b2022-05-13 15:45:49 +0800[diff] [blame]13896run_test "TLS 1.3: Server side check, no server certificate available" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]13897 "$P_SRV debug_level=4 crt_file=none key_file=none" \
Ronald Cron65f90292023-03-13 17:38:12 +0100[diff] [blame]13898 "$P_CLI debug_level=4" \
Jerry Yub89125b2022-05-13 15:45:49 +0800[diff] [blame]13899 1 \
13900 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
13901 -s "No certificate available."
13902
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13903requires_openssl_tls1_3_with_compatible_ephemeral
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13904requires_config_enabled MBEDTLS_DEBUG_C
13905requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13906requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQian2ccd97b2022-05-31 08:30:17 +0000[diff] [blame]13907run_test "TLS 1.3: Server side check - openssl with sni" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13908 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0 \
13909 sni=localhost,$DATA_FILES_PATH/server5.crt,$DATA_FILES_PATH/server5.key,$DATA_FILES_PATH/test-ca_cat12.crt,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
13910 "$O_NEXT_CLI -msg -debug -servername localhost -CAfile $DATA_FILES_PATH/test-ca_cat12.crt -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key -tls1_3" \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13911 0 \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13912 -s "parse ServerName extension" \
XiaokangQian129aeb92022-06-02 09:29:18 +0000[diff] [blame]13913 -s "HTTP/1.0 200 OK"
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13914
XiaokangQianac41edf2022-05-31 13:22:13 +0000[diff] [blame]13915requires_gnutls_tls1_3
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13916requires_config_enabled MBEDTLS_DEBUG_C
13917requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13918requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQian2ccd97b2022-05-31 08:30:17 +0000[diff] [blame]13919run_test "TLS 1.3: Server side check - gnutls with sni" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13920 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0 \
13921 sni=localhost,$DATA_FILES_PATH/server5.crt,$DATA_FILES_PATH/server5.key,$DATA_FILES_PATH/test-ca_cat12.crt,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
13922 "$G_NEXT_CLI localhost -d 4 --sni-hostname=localhost --x509certfile $DATA_FILES_PATH/server5.crt --x509keyfile $DATA_FILES_PATH/server5.key --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS -V" \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13923 0 \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13924 -s "parse ServerName extension" \
XiaokangQian129aeb92022-06-02 09:29:18 +0000[diff] [blame]13925 -s "HTTP/1.0 200 OK"
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13926
XiaokangQian40a35232022-05-07 09:02:40 +0000[diff] [blame]13927requires_config_enabled MBEDTLS_DEBUG_C
13928requires_config_enabled MBEDTLS_SSL_SRV_C
13929requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13930requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQian2ccd97b2022-05-31 08:30:17 +0000[diff] [blame]13931run_test "TLS 1.3: Server side check - mbedtls with sni" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13932 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0 \
13933 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
13934 "$P_CLI debug_level=4 server_name=localhost crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key" \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13935 0 \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13936 -s "parse ServerName extension" \
XiaokangQian129aeb92022-06-02 09:29:18 +0000[diff] [blame]13937 -s "HTTP/1.0 200 OK"
XiaokangQian40a35232022-05-07 09:02:40 +0000[diff] [blame]13938
Gilles Peskine2baaf602022-01-07 15:46:12 +0100[diff] [blame]13939for i in opt-testcases/*.sh
Jerry Yucdcb6832021-11-29 16:50:13 +0800[diff] [blame]13940do
Gilles Peskine5eb2b022022-01-07 15:47:02 +0100[diff] [blame]13941 TEST_SUITE_NAME=${i##*/}
13942 TEST_SUITE_NAME=${TEST_SUITE_NAME%.*}
13943 . "$i"
Jerry Yucdcb6832021-11-29 16:50:13 +0800[diff] [blame]13944done
Gilles Peskine5eb2b022022-01-07 15:47:02 +0100[diff] [blame]13945unset TEST_SUITE_NAME
Jerry Yu305bfc32021-11-24 16:04:47 +0800[diff] [blame]13946
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13947# Test 1.3 compatibility mode
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13948requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
13949requires_config_enabled MBEDTLS_DEBUG_C
13950requires_config_enabled MBEDTLS_SSL_SRV_C
13951requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13952requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13953run_test "TLS 1.3 m->m both peers do not support middlebox compatibility" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]13954 "$P_SRV debug_level=4 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13955 "$P_CLI debug_level=4" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13956 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13957 -s "Protocol is TLSv1.3" \
13958 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13959 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
13960 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
13961
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13962requires_config_enabled MBEDTLS_DEBUG_C
13963requires_config_enabled MBEDTLS_SSL_SRV_C
13964requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13965requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
13966requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13967run_test "TLS 1.3 m->m both with middlebox compat support" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]13968 "$P_SRV debug_level=4 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13969 "$P_CLI debug_level=4" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13970 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13971 -s "Protocol is TLSv1.3" \
13972 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13973 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
13974 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
13975
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13976requires_openssl_tls1_3_with_compatible_ephemeral
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13977requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]13978requires_config_enabled MBEDTLS_DEBUG_C
13979requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13980requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13981run_test "TLS 1.3 m->O both peers do not support middlebox compatibility" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13982 "$O_NEXT_SRV -msg -tls1_3 -no_middlebox -num_tickets 0 -no_resume_ephemeral -no_cache" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13983 "$P_CLI debug_level=4" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13984 0 \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13985 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13986 -C "ChangeCipherSpec invalid in TLS 1.3 without compatibility mode" \
13987 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13988
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13989requires_openssl_tls1_3_with_compatible_ephemeral
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13990requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]13991requires_config_enabled MBEDTLS_DEBUG_C
13992requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13993requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13994run_test "TLS 1.3 m->O server with middlebox compat support, not client" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13995 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13996 "$P_CLI debug_level=4" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]13997 0 \
13998 -c "Protocol is TLSv1.3" \
13999 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]14000
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14001requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14002requires_config_enabled MBEDTLS_DEBUG_C
14003requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14004requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14005requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14006run_test "TLS 1.3 m->O both with middlebox compat support" \
14007 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14008 "$P_CLI debug_level=4" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14009 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14010 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14011 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14012
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]14013requires_gnutls_tls1_3
14014requires_gnutls_next_no_ticket
14015requires_gnutls_next_disable_tls13_compat
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]14016requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14017requires_config_enabled MBEDTLS_DEBUG_C
14018requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14019requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]14020run_test "TLS 1.3 m->G both peers do not support middlebox compatibility" \
14021 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE --disable-client-cert" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14022 "$P_CLI debug_level=4" \
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]14023 0 \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]14024 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14025 -C "ChangeCipherSpec invalid in TLS 1.3 without compatibility mode" \
14026 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]14027
14028requires_gnutls_tls1_3
14029requires_gnutls_next_no_ticket
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]14030requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14031requires_config_enabled MBEDTLS_DEBUG_C
14032requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14033requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]14034run_test "TLS 1.3 m->G server with middlebox compat support, not client" \
14035 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --disable-client-cert" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14036 "$P_CLI debug_level=4" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]14037 0 \
14038 -c "Protocol is TLSv1.3" \
14039 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]14040
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14041requires_gnutls_tls1_3
14042requires_gnutls_next_no_ticket
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14043requires_config_enabled MBEDTLS_DEBUG_C
14044requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14045requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14046requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14047run_test "TLS 1.3 m->G both with middlebox compat support" \
14048 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --disable-client-cert" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14049 "$P_CLI debug_level=4" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14050 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14051 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14052 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14053
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14054requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14055requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14056requires_config_enabled MBEDTLS_DEBUG_C
14057requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14058requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14059run_test "TLS 1.3 O->m both peers do not support middlebox compatibility" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14060 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14061 "$O_NEXT_CLI -msg -debug -no_middlebox" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14062 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14063 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14064 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
14065 -C "14 03 03 00 01"
14066
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14067requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14068requires_config_enabled MBEDTLS_DEBUG_C
14069requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14070requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14071requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14072run_test "TLS 1.3 O->m server with middlebox compat support, not client" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14073 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14074 "$O_NEXT_CLI -msg -debug -no_middlebox" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14075 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14076 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14077 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO"
14078
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14079requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14080requires_config_enabled MBEDTLS_DEBUG_C
14081requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14082requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14083requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14084run_test "TLS 1.3 O->m both with middlebox compat support" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14085 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14086 "$O_NEXT_CLI -msg -debug" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14087 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14088 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14089 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
14090 -c "14 03 03 00 01"
14091
14092requires_gnutls_tls1_3
14093requires_gnutls_next_no_ticket
14094requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14095requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14096requires_config_enabled MBEDTLS_DEBUG_C
14097requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14098requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14099run_test "TLS 1.3 G->m both peers do not support middlebox compatibility" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14100 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14101 "$G_NEXT_CLI localhost --priority=NORMAL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14102 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14103 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14104 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
14105 -C "SSL 3.3 ChangeCipherSpec packet received"
14106
14107requires_gnutls_tls1_3
14108requires_gnutls_next_no_ticket
14109requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14110requires_config_enabled MBEDTLS_DEBUG_C
14111requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14112requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14113requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14114run_test "TLS 1.3 G->m server with middlebox compat support, not client" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14115 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14116 "$G_NEXT_CLI localhost --debug=10 --priority=NORMAL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14117 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14118 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14119 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
14120 -c "SSL 3.3 ChangeCipherSpec packet received" \
14121 -c "discarding change cipher spec in TLS1.3"
14122
14123requires_gnutls_tls1_3
14124requires_gnutls_next_no_ticket
14125requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14126requires_config_enabled MBEDTLS_DEBUG_C
14127requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14128requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14129requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14130run_test "TLS 1.3 G->m both with middlebox compat support" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14131 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14132 "$G_NEXT_CLI localhost --debug=10 --priority=NORMAL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14133 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14134 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14135 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
14136 -c "SSL 3.3 ChangeCipherSpec packet received"
14137
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14138requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14139requires_config_enabled MBEDTLS_DEBUG_C
14140requires_config_enabled MBEDTLS_SSL_SRV_C
14141requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14142requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14143run_test "TLS 1.3 m->m HRR both peers do not support middlebox compatibility" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14144 "$P_SRV debug_level=4 groups=secp384r1 tickets=0" \
14145 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14146 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14147 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14148 -c "Protocol is TLSv1.3" \
14149 -s "tls13 server state: MBEDTLS_SSL_HELLO_RETRY_REQUEST" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14150 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14151 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14152
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14153requires_config_enabled MBEDTLS_DEBUG_C
14154requires_config_enabled MBEDTLS_SSL_SRV_C
14155requires_config_enabled MBEDTLS_SSL_CLI_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]14156requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14157requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14158requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14159run_test "TLS 1.3 m->m HRR both with middlebox compat support" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14160 "$P_SRV debug_level=4 groups=secp384r1 tickets=0" \
14161 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14162 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14163 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14164 -c "Protocol is TLSv1.3" \
14165 -s "tls13 server state: MBEDTLS_SSL_HELLO_RETRY_REQUEST" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14166 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14167 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14168
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14169requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14170requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14171requires_config_enabled MBEDTLS_DEBUG_C
14172requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14173requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14174run_test "TLS 1.3 m->O HRR both peers do not support middlebox compatibility" \
14175 "$O_NEXT_SRV -msg -tls1_3 -groups P-384 -no_middlebox -num_tickets 0 -no_cache" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14176 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14177 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14178 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14179 -c "received HelloRetryRequest message" \
14180 -C "ChangeCipherSpec invalid in TLS 1.3 without compatibility mode" \
14181 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14182
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14183requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14184requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14185requires_config_enabled MBEDTLS_DEBUG_C
14186requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14187requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14188run_test "TLS 1.3 m->O HRR server with middlebox compat support, not client" \
14189 "$O_NEXT_SRV -msg -tls1_3 -groups P-384 -num_tickets 0 -no_cache" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14190 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]14191 0 \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14192 -c "received HelloRetryRequest message" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]14193 -c "Protocol is TLSv1.3" \
14194 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14195
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14196requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14197requires_config_enabled MBEDTLS_DEBUG_C
14198requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14199requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14200requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14201run_test "TLS 1.3 m->O HRR both with middlebox compat support" \
14202 "$O_NEXT_SRV -msg -tls1_3 -groups P-384 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14203 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14204 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14205 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14206 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14207
14208requires_gnutls_tls1_3
14209requires_gnutls_next_no_ticket
14210requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14211requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14212requires_config_enabled MBEDTLS_DEBUG_C
14213requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14214requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14215run_test "TLS 1.3 m->G HRR both peers do not support middlebox compatibility" \
14216 "$G_NEXT_SRV --priority=NORMAL:-GROUP-ALL:+GROUP-SECP384R1:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE --disable-client-cert" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14217 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14218 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14219 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14220 -c "received HelloRetryRequest message" \
14221 -C "ChangeCipherSpec invalid in TLS 1.3 without compatibility mode" \
14222 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14223
14224requires_gnutls_tls1_3
14225requires_gnutls_next_no_ticket
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14226requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14227requires_config_enabled MBEDTLS_DEBUG_C
14228requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14229requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14230run_test "TLS 1.3 m->G HRR server with middlebox compat support, not client" \
14231 "$G_NEXT_SRV --priority=NORMAL:-GROUP-ALL:+GROUP-SECP384R1:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS --disable-client-cert" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14232 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]14233 0 \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14234 -c "received HelloRetryRequest message" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]14235 -c "Protocol is TLSv1.3" \
14236 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14237
14238requires_gnutls_tls1_3
14239requires_gnutls_next_no_ticket
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14240requires_config_enabled MBEDTLS_DEBUG_C
14241requires_config_enabled MBEDTLS_SSL_CLI_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]14242requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14243requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14244requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14245run_test "TLS 1.3 m->G HRR both with middlebox compat support" \
14246 "$G_NEXT_SRV --priority=NORMAL:-GROUP-ALL:+GROUP-SECP384R1:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --disable-client-cert" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14247 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14248 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14249 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14250 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14251
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14252requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14253requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14254requires_config_enabled MBEDTLS_DEBUG_C
14255requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14256requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14257run_test "TLS 1.3 O->m HRR both peers do not support middlebox compatibility" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14258 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14259 "$O_NEXT_CLI -msg -debug -groups P-256:P-384 -no_middlebox" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14260 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14261 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14262 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14263 -C "14 03 03 00 01"
14264
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14265requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14266requires_config_enabled MBEDTLS_DEBUG_C
14267requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14268requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14269requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14270run_test "TLS 1.3 O->m HRR server with middlebox compat support, not client" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14271 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14272 "$O_NEXT_CLI -msg -debug -groups P-256:P-384 -no_middlebox" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14273 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14274 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14275 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14276
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14277requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14278requires_config_enabled MBEDTLS_DEBUG_C
14279requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14280requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14281requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14282run_test "TLS 1.3 O->m HRR both with middlebox compat support" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14283 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14284 "$O_NEXT_CLI -msg -debug -groups P-256:P-384" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14285 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14286 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14287 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14288 -c "14 03 03 00 01"
14289
14290requires_gnutls_tls1_3
14291requires_gnutls_next_no_ticket
14292requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14293requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14294requires_config_enabled MBEDTLS_DEBUG_C
14295requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14296requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14297run_test "TLS 1.3 G->m HRR both peers do not support middlebox compatibility" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14298 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14299 "$G_NEXT_CLI localhost --priority=NORMAL:-GROUP-ALL:+GROUP-SECP256R1:+GROUP-SECP384R1:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14300 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14301 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14302 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14303 -C "SSL 3.3 ChangeCipherSpec packet received"
14304
14305requires_gnutls_tls1_3
14306requires_gnutls_next_no_ticket
14307requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14308requires_config_enabled MBEDTLS_DEBUG_C
14309requires_config_enabled MBEDTLS_SSL_SRV_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]14310requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14311requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14312requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14313run_test "TLS 1.3 G->m HRR server with middlebox compat support, not client" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14314 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14315 "$G_NEXT_CLI localhost --debug=10 --priority=NORMAL:-GROUP-ALL:+GROUP-SECP256R1:+GROUP-SECP384R1:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14316 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14317 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14318 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14319 -c "SSL 3.3 ChangeCipherSpec packet received" \
14320 -c "discarding change cipher spec in TLS1.3"
14321
14322requires_gnutls_tls1_3
14323requires_gnutls_next_no_ticket
14324requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14325requires_config_enabled MBEDTLS_DEBUG_C
14326requires_config_enabled MBEDTLS_SSL_SRV_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]14327requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14328requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14329requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14330run_test "TLS 1.3 G->m HRR both with middlebox compat support" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14331 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14332 "$G_NEXT_CLI localhost --debug=10 --priority=NORMAL:-GROUP-ALL:+GROUP-SECP256R1:+GROUP-SECP384R1:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14333 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14334 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14335 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14336 -c "SSL 3.3 ChangeCipherSpec packet received"
14337
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14338requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14339requires_config_enabled MBEDTLS_DEBUG_C
14340requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14341requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14342run_test "TLS 1.3: Check signature algorithm order, m->O" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14343 "$O_NEXT_SRV_NO_CERT -cert $DATA_FILES_PATH/server2-sha256.crt -key $DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14344 -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache
14345 -Verify 10 -sigalgs rsa_pkcs1_sha512:rsa_pss_rsae_sha512:rsa_pss_rsae_sha384:ecdsa_secp256r1_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14346 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14347 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14348 0 \
14349 -c "Protocol is TLSv1.3" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14350 -c "CertificateVerify signature with rsa_pss_rsae_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14351 -c "HTTP/1.0 200 [Oo][Kk]"
14352
14353requires_gnutls_tls1_3
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14354requires_config_enabled MBEDTLS_DEBUG_C
14355requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14356requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14357run_test "TLS 1.3: Check signature algorithm order, m->G" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14358 "$G_NEXT_SRV_NO_CERT --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14359 -d 4
14360 --priority=NORMAL:-VERS-ALL:-SIGN-ALL:+SIGN-RSA-SHA512:+SIGN-RSA-PSS-RSAE-SHA512:+SIGN-RSA-PSS-RSAE-SHA384:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14361 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14362 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14363 0 \
14364 -c "Protocol is TLSv1.3" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14365 -c "CertificateVerify signature with rsa_pss_rsae_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14366 -c "HTTP/1.0 200 [Oo][Kk]"
14367
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14368requires_config_enabled MBEDTLS_DEBUG_C
14369requires_config_enabled MBEDTLS_SSL_SRV_C
14370requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14371requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14372run_test "TLS 1.3: Check signature algorithm order, m->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14373 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14374 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14375 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14376 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14377 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14378 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14379 0 \
14380 -c "Protocol is TLSv1.3" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14381 -c "CertificateVerify signature with rsa_pss_rsae_sha512" \
14382 -s "CertificateVerify signature with rsa_pss_rsae_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14383 -s "ssl_tls13_pick_key_cert:selected signature algorithm rsa_pss_rsae_sha512" \
14384 -c "HTTP/1.0 200 [Oo][Kk]"
14385
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14386requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14387requires_config_enabled MBEDTLS_DEBUG_C
14388requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14389requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14390run_test "TLS 1.3: Check signature algorithm order, O->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14391 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14392 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14393 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14394 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14395 "$O_NEXT_CLI_NO_CERT -msg -CAfile $DATA_FILES_PATH/test-ca_cat12.crt \
14396 -cert $DATA_FILES_PATH/server2-sha256.crt -key $DATA_FILES_PATH/server2.key \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14397 -sigalgs rsa_pkcs1_sha512:rsa_pss_rsae_sha512:rsa_pss_rsae_sha384:ecdsa_secp256r1_sha256" \
14398 0 \
14399 -c "TLSv1.3" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14400 -s "CertificateVerify signature with rsa_pss_rsae_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14401 -s "ssl_tls13_pick_key_cert:selected signature algorithm rsa_pss_rsae_sha512"
14402
14403requires_gnutls_tls1_3
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14404requires_config_enabled MBEDTLS_DEBUG_C
14405requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14406requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14407run_test "TLS 1.3: Check signature algorithm order, G->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14408 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14409 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14410 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14411 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14412 "$G_NEXT_CLI_NO_CERT localhost -d 4 --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt \
14413 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14414 --priority=NORMAL:-SIGN-ALL:+SIGN-RSA-SHA512:+SIGN-RSA-PSS-RSAE-SHA512:+SIGN-RSA-PSS-RSAE-SHA384" \
14415 0 \
14416 -c "Negotiated version: 3.4" \
14417 -c "HTTP/1.0 200 [Oo][Kk]" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14418 -s "CertificateVerify signature with rsa_pss_rsae_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14419 -s "ssl_tls13_pick_key_cert:selected signature algorithm rsa_pss_rsae_sha512"
14420
14421requires_gnutls_tls1_3
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14422requires_config_enabled MBEDTLS_DEBUG_C
14423requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14424requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14425run_test "TLS 1.3: Check server no suitable signature algorithm, G->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14426 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14427 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14428 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14429 sig_algs=rsa_pkcs1_sha512,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14430 "$G_NEXT_CLI_NO_CERT localhost -d 4 --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt \
14431 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14432 --priority=NORMAL:-SIGN-ALL:+SIGN-RSA-SHA512:+SIGN-RSA-PSS-RSAE-SHA512:+SIGN-ECDSA-SECP521R1-SHA512" \
14433 1 \
Ronald Cron67ea2542022-09-15 17:34:42 +0200[diff] [blame]14434 -S "ssl_tls13_pick_key_cert:check signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14435
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14436requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14437requires_config_enabled MBEDTLS_DEBUG_C
14438requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14439requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14440run_test "TLS 1.3: Check server no suitable signature algorithm, O->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14441 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14442 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14443 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14444 sig_algs=rsa_pkcs1_sha512,ecdsa_secp256r1_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14445 "$O_NEXT_CLI_NO_CERT -msg -CAfile $DATA_FILES_PATH/test-ca_cat12.crt \
14446 -cert $DATA_FILES_PATH/server2-sha256.crt -key $DATA_FILES_PATH/server2.key \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14447 -sigalgs rsa_pkcs1_sha512:rsa_pss_rsae_sha512:ecdsa_secp521r1_sha512" \
14448 1 \
Ronald Cron67ea2542022-09-15 17:34:42 +0200[diff] [blame]14449 -S "ssl_tls13_pick_key_cert:check signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14450
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14451requires_config_enabled MBEDTLS_DEBUG_C
14452requires_config_enabled MBEDTLS_SSL_SRV_C
14453requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14454requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14455run_test "TLS 1.3: Check server no suitable signature algorithm, m->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14456 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14457 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14458 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14459 sig_algs=rsa_pkcs1_sha512,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14460 "$P_CLI allow_sha1=0 debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14461 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,ecdsa_secp521r1_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14462 1 \
Ronald Cron67ea2542022-09-15 17:34:42 +0200[diff] [blame]14463 -S "ssl_tls13_pick_key_cert:check signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14464
14465requires_gnutls_tls1_3
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14466requires_config_enabled MBEDTLS_DEBUG_C
14467requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14468requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14469run_test "TLS 1.3: Check server no suitable certificate, G->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14470 "$P_SRV debug_level=4
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14471 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14472 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14473 "$G_NEXT_CLI_NO_CERT localhost -d 4 --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14474 --priority=NORMAL:-SIGN-ALL:+SIGN-ECDSA-SECP521R1-SHA512:+SIGN-ECDSA-SECP256R1-SHA256" \
14475 1 \
14476 -s "ssl_tls13_pick_key_cert:no suitable certificate found"
14477
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14478requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14479requires_config_enabled MBEDTLS_DEBUG_C
14480requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14481requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14482run_test "TLS 1.3: Check server no suitable certificate, O->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14483 "$P_SRV debug_level=4
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14484 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14485 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14486 "$O_NEXT_CLI_NO_CERT -msg -CAfile $DATA_FILES_PATH/test-ca_cat12.crt \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14487 -sigalgs ecdsa_secp521r1_sha512:ecdsa_secp256r1_sha256" \
14488 1 \
14489 -s "ssl_tls13_pick_key_cert:no suitable certificate found"
14490
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14491requires_config_enabled MBEDTLS_DEBUG_C
14492requires_config_enabled MBEDTLS_SSL_SRV_C
14493requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14494requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14495run_test "TLS 1.3: Check server no suitable certificate, m->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14496 "$P_SRV debug_level=4
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14497 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14498 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
14499 "$P_CLI allow_sha1=0 debug_level=4 \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14500 sig_algs=ecdsa_secp521r1_sha512,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14501 1 \
14502 -s "ssl_tls13_pick_key_cert:no suitable certificate found"
14503
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14504requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14505requires_config_enabled MBEDTLS_DEBUG_C
14506requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14507requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14508run_test "TLS 1.3: Check client no signature algorithm, m->O" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14509 "$O_NEXT_SRV_NO_CERT -cert $DATA_FILES_PATH/server2-sha256.crt -key $DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14510 -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache
14511 -Verify 10 -sigalgs rsa_pkcs1_sha512:rsa_pss_rsae_sha512:rsa_pss_rsae_sha384:ecdsa_secp521r1_sha512" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14512 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14513 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14514 1 \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14515 -c "no suitable signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14516
14517requires_gnutls_tls1_3
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14518requires_config_enabled MBEDTLS_DEBUG_C
14519requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14520requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14521run_test "TLS 1.3: Check client no signature algorithm, m->G" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14522 "$G_NEXT_SRV_NO_CERT --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14523 -d 4
14524 --priority=NORMAL:-VERS-ALL:-SIGN-ALL:+SIGN-RSA-SHA512:+SIGN-RSA-PSS-RSAE-SHA512:+SIGN-RSA-PSS-RSAE-SHA384:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14525 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14526 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14527 1 \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14528 -c "no suitable signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14529
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14530requires_config_enabled MBEDTLS_DEBUG_C
14531requires_config_enabled MBEDTLS_SSL_SRV_C
14532requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14533requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14534run_test "TLS 1.3: Check client no signature algorithm, m->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14535 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14536 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14537 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14538 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp521r1_sha512" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14539 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14540 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14541 1 \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14542 -c "no suitable signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14543
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14544requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu6455b682022-06-27 14:18:29 +0800[diff] [blame]14545requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14546requires_config_enabled MBEDTLS_DEBUG_C
14547requires_config_enabled MBEDTLS_SSL_CLI_C
Jerry Yueec4f032022-07-23 11:31:51 +0800[diff] [blame]14548run_test "TLS 1.2: Check rsa_pss_rsae compatibility issue, m->O" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14549 "$O_NEXT_SRV_NO_CERT -cert $DATA_FILES_PATH/server2-sha256.crt -key $DATA_FILES_PATH/server2.key
Jerry Yu6455b682022-06-27 14:18:29 +0800[diff] [blame]14550 -msg -tls1_2
14551 -Verify 10 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14552 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key
Jerry Yu6455b682022-06-27 14:18:29 +0800[diff] [blame]14553 sig_algs=rsa_pss_rsae_sha512,rsa_pkcs1_sha512
14554 min_version=tls12 max_version=tls13 " \
14555 0 \
14556 -c "Protocol is TLSv1.2" \
14557 -c "HTTP/1.0 200 [Oo][Kk]"
14558
14559
14560requires_gnutls_tls1_3
14561requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14562requires_config_enabled MBEDTLS_DEBUG_C
14563requires_config_enabled MBEDTLS_SSL_CLI_C
Jerry Yueec4f032022-07-23 11:31:51 +0800[diff] [blame]14564run_test "TLS 1.2: Check rsa_pss_rsae compatibility issue, m->G" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14565 "$G_NEXT_SRV_NO_CERT --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key
Jerry Yu6455b682022-06-27 14:18:29 +0800[diff] [blame]14566 -d 4
14567 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14568 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key
Jerry Yu6455b682022-06-27 14:18:29 +0800[diff] [blame]14569 sig_algs=rsa_pss_rsae_sha512,rsa_pkcs1_sha512
14570 min_version=tls12 max_version=tls13 " \
14571 0 \
14572 -c "Protocol is TLSv1.2" \
14573 -c "HTTP/1.0 200 [Oo][Kk]"
14574
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14575requires_config_enabled MBEDTLS_SSL_SRV_C
14576requires_config_enabled MBEDTLS_DEBUG_C
14577requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14578requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14579requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14580requires_config_enabled PSA_WANT_DH_RFC7919_3072
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14581requires_gnutls_tls1_3
14582requires_gnutls_next_no_ticket
14583requires_gnutls_next_disable_tls13_compat
14584run_test "TLS 1.3 G->m: AES_128_GCM_SHA256,ffdhe3072,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14585 "$P_SRV crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe3072 tls13_kex_modes=ephemeral cookies=0 tickets=0" \
14586 "$G_NEXT_CLI_NO_CERT --debug=4 --single-key-share --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE3072:+VERS-TLS1.3:%NO_TICKETS" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14587 0 \
14588 -s "Protocol is TLSv1.3" \
14589 -s "server hello, chosen ciphersuite: TLS1-3-AES-128-GCM-SHA256 ( id=4865 )" \
14590 -s "received signature algorithm: 0x804" \
14591 -s "got named group: ffdhe3072(0101)" \
14592 -s "Certificate verification was skipped" \
14593 -C "received HelloRetryRequest message"
14594
14595
14596requires_gnutls_tls1_3
14597requires_gnutls_next_no_ticket
14598requires_gnutls_next_disable_tls13_compat
14599requires_config_enabled MBEDTLS_SSL_CLI_C
14600requires_config_enabled MBEDTLS_DEBUG_C
14601requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14602requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14603requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14604requires_config_enabled PSA_WANT_DH_RFC7919_3072
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14605run_test "TLS 1.3 m->G: AES_128_GCM_SHA256,ffdhe3072,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14606 "$G_NEXT_SRV_NO_CERT --http --disable-client-cert --debug=4 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE3072:+VERS-TLS1.3:%NO_TICKETS" \
14607 "$P_CLI ca_file=$DATA_FILES_PATH/test-ca_cat12.crt debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe3072" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14608 0 \
14609 -c "HTTP/1.0 200 OK" \
14610 -c "Protocol is TLSv1.3" \
14611 -c "server hello, chosen ciphersuite: ( 1301 ) - TLS1-3-AES-128-GCM-SHA256" \
14612 -c "Certificate Verify: Signature algorithm ( 0804 )" \
14613 -c "NamedGroup: ffdhe3072 ( 101 )" \
14614 -c "Verifying peer X.509 certificate... ok" \
14615 -C "received HelloRetryRequest message"
14616
14617requires_config_enabled MBEDTLS_SSL_SRV_C
14618requires_config_enabled MBEDTLS_DEBUG_C
14619requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14620requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14621requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14622requires_config_enabled PSA_WANT_DH_RFC7919_4096
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14623requires_gnutls_tls1_3
14624requires_gnutls_next_no_ticket
14625requires_gnutls_next_disable_tls13_compat
14626run_test "TLS 1.3 G->m: AES_128_GCM_SHA256,ffdhe4096,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14627 "$P_SRV crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe4096 tls13_kex_modes=ephemeral cookies=0 tickets=0" \
14628 "$G_NEXT_CLI_NO_CERT --debug=4 --single-key-share --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE4096:+VERS-TLS1.3:%NO_TICKETS" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14629 0 \
14630 -s "Protocol is TLSv1.3" \
14631 -s "server hello, chosen ciphersuite: TLS1-3-AES-128-GCM-SHA256 ( id=4865 )" \
14632 -s "received signature algorithm: 0x804" \
14633 -s "got named group: ffdhe4096(0102)" \
14634 -s "Certificate verification was skipped" \
14635 -C "received HelloRetryRequest message"
14636
14637
14638requires_gnutls_tls1_3
14639requires_gnutls_next_no_ticket
14640requires_gnutls_next_disable_tls13_compat
14641requires_config_enabled MBEDTLS_SSL_CLI_C
14642requires_config_enabled MBEDTLS_DEBUG_C
14643requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14644requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14645requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14646requires_config_enabled PSA_WANT_DH_RFC7919_4096
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14647run_test "TLS 1.3 m->G: AES_128_GCM_SHA256,ffdhe4096,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14648 "$G_NEXT_SRV_NO_CERT --http --disable-client-cert --debug=4 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE4096:+VERS-TLS1.3:%NO_TICKETS" \
14649 "$P_CLI ca_file=$DATA_FILES_PATH/test-ca_cat12.crt debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe4096" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14650 0 \
14651 -c "HTTP/1.0 200 OK" \
14652 -c "Protocol is TLSv1.3" \
14653 -c "server hello, chosen ciphersuite: ( 1301 ) - TLS1-3-AES-128-GCM-SHA256" \
14654 -c "Certificate Verify: Signature algorithm ( 0804 )" \
14655 -c "NamedGroup: ffdhe4096 ( 102 )" \
14656 -c "Verifying peer X.509 certificate... ok" \
14657 -C "received HelloRetryRequest message"
14658
14659requires_config_enabled MBEDTLS_SSL_SRV_C
14660requires_config_enabled MBEDTLS_DEBUG_C
14661requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14662requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14663requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14664requires_config_enabled PSA_WANT_DH_RFC7919_6144
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14665requires_gnutls_tls1_3
14666requires_gnutls_next_no_ticket
14667requires_gnutls_next_disable_tls13_compat
Gilles Peskine6bdebfe2024-10-31 18:52:40 +0100[diff] [blame]14668# Tests using FFDH with a large prime take a long time to run with a memory
14669# sanitizer. GnuTLS <=3.8.1 has a hard-coded timeout and gives up after
14670# 30s (since 3.8.1, it can be configured with --timeout). We've observed
14671# 8192-bit FFDH test cases failing intermittently on heavily loaded CI
14672# executors (https://github.com/Mbed-TLS/mbedtls/issues/9742),
14673# when using MSan. As a workaround, skip them.
14674# Also skip 6144-bit FFDH to have a bit of safety margin.
14675not_with_msan_or_valgrind
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14676run_test "TLS 1.3 G->m: AES_128_GCM_SHA256,ffdhe6144,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14677 "$P_SRV crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe6144 tls13_kex_modes=ephemeral cookies=0 tickets=0" \
14678 "$G_NEXT_CLI_NO_CERT --debug=4 --single-key-share --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE6144:+VERS-TLS1.3:%NO_TICKETS" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14679 0 \
14680 -s "Protocol is TLSv1.3" \
14681 -s "server hello, chosen ciphersuite: TLS1-3-AES-128-GCM-SHA256 ( id=4865 )" \
14682 -s "received signature algorithm: 0x804" \
14683 -s "got named group: ffdhe6144(0103)" \
14684 -s "Certificate verification was skipped" \
14685 -C "received HelloRetryRequest message"
14686
14687requires_gnutls_tls1_3
14688requires_gnutls_next_no_ticket
14689requires_gnutls_next_disable_tls13_compat
14690requires_config_enabled MBEDTLS_SSL_CLI_C
14691requires_config_enabled MBEDTLS_DEBUG_C
14692requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14693requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14694requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14695requires_config_enabled PSA_WANT_DH_RFC7919_6144
Gilles Peskine6bdebfe2024-10-31 18:52:40 +0100[diff] [blame]14696not_with_msan_or_valgrind
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14697run_test "TLS 1.3 m->G: AES_128_GCM_SHA256,ffdhe6144,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14698 "$G_NEXT_SRV_NO_CERT --http --disable-client-cert --debug=4 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE6144:+VERS-TLS1.3:%NO_TICKETS" \
14699 "$P_CLI ca_file=$DATA_FILES_PATH/test-ca_cat12.crt debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe6144" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14700 0 \
14701 -c "HTTP/1.0 200 OK" \
14702 -c "Protocol is TLSv1.3" \
14703 -c "server hello, chosen ciphersuite: ( 1301 ) - TLS1-3-AES-128-GCM-SHA256" \
14704 -c "Certificate Verify: Signature algorithm ( 0804 )" \
14705 -c "NamedGroup: ffdhe6144 ( 103 )" \
14706 -c "Verifying peer X.509 certificate... ok" \
14707 -C "received HelloRetryRequest message"
14708
14709requires_config_enabled MBEDTLS_SSL_SRV_C
14710requires_config_enabled MBEDTLS_DEBUG_C
14711requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14712requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14713requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14714requires_config_enabled PSA_WANT_DH_RFC7919_8192
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14715requires_gnutls_tls1_3
14716requires_gnutls_next_no_ticket
14717requires_gnutls_next_disable_tls13_compat
Gilles Peskine6bdebfe2024-10-31 18:52:40 +0100[diff] [blame]14718not_with_msan_or_valgrind
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14719client_needs_more_time 4
14720run_test "TLS 1.3 G->m: AES_128_GCM_SHA256,ffdhe8192,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14721 "$P_SRV crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe8192 tls13_kex_modes=ephemeral cookies=0 tickets=0" \
14722 "$G_NEXT_CLI_NO_CERT --debug=4 --single-key-share --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE8192:+VERS-TLS1.3:%NO_TICKETS" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14723 0 \
14724 -s "Protocol is TLSv1.3" \
14725 -s "server hello, chosen ciphersuite: TLS1-3-AES-128-GCM-SHA256 ( id=4865 )" \
14726 -s "received signature algorithm: 0x804" \
14727 -s "got named group: ffdhe8192(0104)" \
14728 -s "Certificate verification was skipped" \
14729 -C "received HelloRetryRequest message"
14730
14731requires_gnutls_tls1_3
14732requires_gnutls_next_no_ticket
14733requires_gnutls_next_disable_tls13_compat
14734requires_config_enabled MBEDTLS_SSL_CLI_C
14735requires_config_enabled MBEDTLS_DEBUG_C
14736requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14737requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14738requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14739requires_config_enabled PSA_WANT_DH_RFC7919_8192
Gilles Peskine6bdebfe2024-10-31 18:52:40 +0100[diff] [blame]14740not_with_msan_or_valgrind
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14741client_needs_more_time 4
14742run_test "TLS 1.3 m->G: AES_128_GCM_SHA256,ffdhe8192,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14743 "$G_NEXT_SRV_NO_CERT --http --disable-client-cert --debug=4 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE8192:+VERS-TLS1.3:%NO_TICKETS" \
14744 "$P_CLI ca_file=$DATA_FILES_PATH/test-ca_cat12.crt debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe8192" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14745 0 \
14746 -c "HTTP/1.0 200 OK" \
14747 -c "Protocol is TLSv1.3" \
14748 -c "server hello, chosen ciphersuite: ( 1301 ) - TLS1-3-AES-128-GCM-SHA256" \
14749 -c "Certificate Verify: Signature algorithm ( 0804 )" \
14750 -c "NamedGroup: ffdhe8192 ( 104 )" \
14751 -c "Verifying peer X.509 certificate... ok" \
14752 -C "received HelloRetryRequest message"
14753
Ronald Cron8a74f072023-06-14 17:59:29 +0200[diff] [blame]14754requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
14755requires_config_enabled MBEDTLS_SSL_SRV_C
14756requires_config_enabled MBEDTLS_SSL_CLI_C
14757requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
14758requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
14759run_test "TLS 1.3: no HRR in case of PSK key exchange mode" \
Gilles Peskineabb1c222024-05-13 21:06:26 +0200[diff] [blame]14760 "$P_SRV nbio=2 psk=73776f726466697368 psk_identity=0a0b0c tls13_kex_modes=psk groups=none" \
14761 "$P_CLI nbio=2 debug_level=3 psk=73776f726466697368 psk_identity=0a0b0c tls13_kex_modes=all" \
Ronald Cron8a74f072023-06-14 17:59:29 +0200[diff] [blame]14762 0 \
14763 -C "received HelloRetryRequest message" \
14764 -c "Selected key exchange mode: psk$" \
14765 -c "HTTP/1.0 200 OK"
14766
Waleed Elmelegy790f3b12024-07-04 16:38:04 +0000[diff] [blame]14767# Legacy_compression_methods testing
14768
14769requires_gnutls
Waleed Elmelegy38c87572024-07-15 17:25:04 +0000[diff] [blame]14770requires_config_enabled MBEDTLS_SSL_SRV_C
Waleed Elmelegy790f3b12024-07-04 16:38:04 +0000[diff] [blame]14771requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Waleed Elmelegy38c87572024-07-15 17:25:04 +0000[diff] [blame]14772run_test "TLS 1.2 ClientHello indicating support for deflate compression method" \
14773 "$P_SRV debug_level=3" \
14774 "$G_CLI --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:+COMP-DEFLATE localhost" \
14775 0 \
14776 -c "Handshake was completed" \
14777 -s "dumping .client hello, compression. (2 bytes)"
Waleed Elmelegy790f3b12024-07-04 16:38:04 +0000[diff] [blame]14778
Waleed Elmelegy29581ce2025-01-24 17:39:58 +0000[diff] [blame]14779# Handshake defragmentation testing
Minos Galanakise6dbf492025-02-18 17:28:27 +0000[diff] [blame]14780
Gilles Peskine8ef2e742025-03-01 14:26:51 +0100[diff] [blame]14781# Most test cases are in opt-testcases/handshake-generated.sh
Minos Galanakis79693bf2025-02-18 17:41:18 +0000[diff] [blame]14782
Minos Galanakis79693bf2025-02-18 17:41:18 +0000[diff] [blame]14783requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakis79693bf2025-02-18 17:41:18 +0000[diff] [blame]14784requires_certificate_authentication
Minos Galanakis1e6438d2025-02-12 16:20:01 +0000[diff] [blame]14785run_test "Handshake defragmentation on server: len=32, TLS 1.2 ClientHello (unsupported)" \
Minos Galanakis79693bf2025-02-18 17:41:18 +0000[diff] [blame]14786 "$P_SRV debug_level=4 force_version=tls12 auth_mode=required" \
14787 "$O_NEXT_CLI -tls1_2 -split_send_frag 32 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
14788 1 \
14789 -s "The SSL configuration is tls12 only" \
14790 -s "bad client hello message" \
14791 -s "SSL - A message could not be parsed due to a syntactic error"
14792
Minos Galanakis44c1c5f2025-03-11 14:06:38 +0000[diff] [blame]14793# Test server-side buffer resizing with fragmented handshake on TLS1.2
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14794requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakis1e6438d2025-02-12 16:20:01 +0000[diff] [blame]14795requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
14796requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
14797requires_max_content_len 1025
Minos Galanakis620e8c22025-03-11 17:08:01 +0000[diff] [blame]14798run_test "Handshake defragmentation on server: len=256, buffer resizing with MFL=1024" \
Minos Galanakis1e6438d2025-02-12 16:20:01 +0000[diff] [blame]14799 "$P_SRV debug_level=4 auth_mode=required" \
14800 "$O_NEXT_CLI -tls1_2 -split_send_frag 256 -maxfraglen 1024 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
14801 0 \
14802 -s "Reallocating in_buf" \
14803 -s "Reallocating out_buf" \
14804 -s "reassembled record" \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14805 -s "initial handshake fragment: 256, 0\\.\\.256 of [0-9]\\+" \
14806 -s "Prepare: waiting for more handshake fragments 256/" \
14807 -s "Consume: waiting for more handshake fragments 256/"
Minos Galanakis1e6438d2025-02-12 16:20:01 +0000[diff] [blame]14808
Minos Galanakis44c1c5f2025-03-11 14:06:38 +0000[diff] [blame]14809# Test client-initiated renegotiation with fragmented handshake on TLS1.2
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14810requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakisc4595a42025-02-12 18:23:09 +0000[diff] [blame]14811requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14812run_test "Handshake defragmentation on server: len=512, client-initiated renegotiation" \
Minos Galanakisc4595a42025-02-12 18:23:09 +0000[diff] [blame]14813 "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
Minos Galanakis27988882025-03-11 17:29:33 +0000[diff] [blame]14814 "$O_NEXT_CLI_RENEGOTIATE -tls1_2 -split_send_frag 512 -connect 127.0.0.1:+$SRV_PORT" \
Minos Galanakisc4595a42025-02-12 18:23:09 +0000[diff] [blame]14815 0 \
14816 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
14817 -s "found renegotiation extension" \
14818 -s "server hello, secure renegotiation extension" \
14819 -s "=> renegotiate" \
14820 -S "write hello request" \
14821 -s "reassembled record" \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14822 -s "initial handshake fragment: 512, 0\\.\\.512 of [0-9]\\+" \
14823 -s "Prepare: waiting for more handshake fragments 512/" \
14824 -s "Consume: waiting for more handshake fragments 512/" \
Minos Galanakisc4595a42025-02-12 18:23:09 +0000[diff] [blame]14825
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14826requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14827requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14828run_test "Handshake defragmentation on server: len=256, client-initiated renegotiation" \
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14829 "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
Minos Galanakis27988882025-03-11 17:29:33 +0000[diff] [blame]14830 "$O_NEXT_CLI_RENEGOTIATE -tls1_2 -split_send_frag 256 -connect 127.0.0.1:+$SRV_PORT" \
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14831 0 \
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14832 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
14833 -s "found renegotiation extension" \
14834 -s "server hello, secure renegotiation extension" \
14835 -s "=> renegotiate" \
14836 -S "write hello request" \
14837 -s "reassembled record" \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14838 -s "initial handshake fragment: 256, 0\\.\\.256 of [0-9]\\+" \
14839 -s "Prepare: waiting for more handshake fragments 256/" \
14840 -s "Consume: waiting for more handshake fragments 256/" \
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14841
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14842requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14843requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14844requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14845run_test "Handshake defragmentation on server: len=128, client-initiated renegotiation" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14846 "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
Minos Galanakis27988882025-03-11 17:29:33 +0000[diff] [blame]14847 "$O_NEXT_CLI_RENEGOTIATE -tls1_2 -split_send_frag 128 -connect 127.0.0.1:+$SRV_PORT" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14848 0 \
14849 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
14850 -s "found renegotiation extension" \
14851 -s "server hello, secure renegotiation extension" \
14852 -s "=> renegotiate" \
14853 -S "write hello request" \
14854 -s "reassembled record" \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14855 -s "initial handshake fragment: 128, 0\\.\\.128 of [0-9]\\+" \
14856 -s "Prepare: waiting for more handshake fragments 128/" \
14857 -s "Consume: waiting for more handshake fragments 128/" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14858
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14859requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14860requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
14861requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14862run_test "Handshake defragmentation on server: len=4, client-initiated renegotiation" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14863 "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
Minos Galanakis27988882025-03-11 17:29:33 +0000[diff] [blame]14864 "$O_NEXT_CLI_RENEGOTIATE -tls1_2 -split_send_frag 4 -connect 127.0.0.1:+$SRV_PORT" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14865 0 \
14866 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
14867 -s "found renegotiation extension" \
14868 -s "server hello, secure renegotiation extension" \
14869 -s "=> renegotiate" \
14870 -S "write hello request" \
14871 -s "reassembled record" \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14872 -s "initial handshake fragment: 4, 0\\.\\.4 of [0-9]\\+" \
14873 -s "Prepare: waiting for more handshake fragments 4/" \
14874 -s "Consume: waiting for more handshake fragments 4/" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14875
Minos Galanakise61d0e92025-03-12 01:07:58 +0000[diff] [blame]14876requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14877requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
14878requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14879run_test "Handshake defragmentation on server: len=4, client-initiated server-rejected renegotiation" \
Minos Galanakise61d0e92025-03-12 01:07:58 +0000[diff] [blame]14880 "$P_SRV debug_level=4 exchanges=2 renegotiation=0 auth_mode=required" \
14881 "$O_NEXT_CLI_RENEGOTIATE -tls1_2 -split_send_frag 4 -connect 127.0.0.1:+$SRV_PORT" \
14882 1 \
14883 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
14884 -s "refusing renegotiation, sending alert" \
14885 -s "server hello, secure renegotiation extension" \
14886 -s "initial handshake fragment: 4, 0\\.\\.4 of [0-9]\\+" \
14887 -s "Prepare: waiting for more handshake fragments 4/" \
14888 -s "Consume: waiting for more handshake fragments 4/" \
14889
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14890# Test server-initiated renegotiation with fragmented handshake on TLS1.2
Minos Galanakis6c129c32025-03-18 10:31:37 +0000[diff] [blame]14891
14892# Note: The /reneg endpoint serves as a directive for OpenSSL's s_server
14893# to initiate a handshake renegotiation.
14894# Note: Adjusting the renegotiation delay beyond the library's default
14895# value of 16 is necessary. This parameter defines the maximum
14896# number of records received before renegotiation is completed.
14897# By fragmenting records and thereby increasing their quantity,
14898# the default threshold can be reached more quickly.
14899# Setting it to -1 disables that policy's enforment.
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14900requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14901requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14902run_test "Handshake defragmentation on client: len=512, server-initiated renegotiation" \
Minos Galanakis2a1eacc2025-03-11 17:24:04 +0000[diff] [blame]14903 "$O_NEXT_SRV -tls1_2 -split_send_frag 512 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14904 "$P_CLI debug_level=3 renegotiation=1 request_page=/reneg" \
14905 0 \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14906 -c "initial handshake fragment: 512, 0\\.\\.512 of [0-9]\\+" \
14907 -c "Prepare: waiting for more handshake fragments 512/" \
14908 -c "Consume: waiting for more handshake fragments 512/" \
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14909 -c "client hello, adding renegotiation extension" \
14910 -c "found renegotiation extension" \
14911 -c "=> renegotiate"
14912
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14913requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14914requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14915run_test "Handshake defragmentation on client: len=256, server-initiated renegotiation" \
Minos Galanakis2a1eacc2025-03-11 17:24:04 +0000[diff] [blame]14916 "$O_NEXT_SRV -tls1_2 -split_send_frag 256 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
Minos Galanakisbde759b2025-03-13 11:43:53 +0000[diff] [blame]14917 "$P_CLI debug_level=3 renegotiation=1 renego_delay=-1 request_page=/reneg" \
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14918 0 \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14919 -c "initial handshake fragment: 256, 0\\.\\.256 of [0-9]\\+" \
14920 -c "Prepare: waiting for more handshake fragments 256/" \
14921 -c "Consume: waiting for more handshake fragments 256/" \
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14922 -c "client hello, adding renegotiation extension" \
14923 -c "found renegotiation extension" \
14924 -c "=> renegotiate"
14925
Minos Galanakis6c129c32025-03-18 10:31:37 +0000[diff] [blame]14926requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14927requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
14928run_test "Handshake defragmentation on client: len=128, server-initiated renegotiation" \
14929 "$O_NEXT_SRV -tls1_2 -split_send_frag 128 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
14930 "$P_CLI debug_level=3 renegotiation=1 renego_delay=-1 request_page=/reneg" \
14931 0 \
14932 -c "initial handshake fragment: 128, 0\\.\\.128 of [0-9]\\+" \
14933 -c "Prepare: waiting for more handshake fragments 128/" \
14934 -c "Consume: waiting for more handshake fragments 128/" \
14935 -c "client hello, adding renegotiation extension" \
14936 -c "found renegotiation extension" \
14937 -c "=> renegotiate"
14938
14939requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14940requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
14941run_test "Handshake defragmentation on client: len=4, server-initiated renegotiation" \
14942 "$O_NEXT_SRV -tls1_2 -split_send_frag 4 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
14943 "$P_CLI debug_level=3 renegotiation=1 renego_delay=-1 request_page=/reneg" \
14944 0 \
14945 -c "initial handshake fragment: 4, 0\\.\\.4 of [0-9]\\+" \
14946 -c "Prepare: waiting for more handshake fragments 4/" \
14947 -c "Consume: waiting for more handshake fragments 4/" \
14948 -c "client hello, adding renegotiation extension" \
14949 -c "found renegotiation extension" \
14950 -c "=> renegotiate"
14951
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]14952# Test heap memory usage after handshake
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]14953requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]14954requires_config_enabled MBEDTLS_MEMORY_DEBUG
14955requires_config_enabled MBEDTLS_MEMORY_BUFFER_ALLOC_C
14956requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]14957requires_max_content_len 16384
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]14958run_tests_memory_after_handshake
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]14959
Tomás González24552ff2023-08-17 15:10:03 +0100[diff] [blame]14960if [ "$LIST_TESTS" -eq 0 ]; then
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]14961
Tomás González24552ff2023-08-17 15:10:03 +0100[diff] [blame]14962 # Final report
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]14963
Tomás González24552ff2023-08-17 15:10:03 +0100[diff] [blame]14964 echo "------------------------------------------------------------------------"
14965
14966 if [ $FAILS = 0 ]; then
14967 printf "PASSED"
14968 else
14969 printf "FAILED"
14970 fi
14971 PASSES=$(( $TESTS - $FAILS ))
14972 echo " ($PASSES / $TESTS tests ($SKIPS skipped))"
14973
Gilles Peskinec75048c2024-05-17 11:55:15 +0200[diff] [blame]14974 if [ $((TESTS - SKIPS)) -lt $MIN_TESTS ]; then
14975 cat <<EOF
14976Error: Expected to run at least $MIN_TESTS, but only ran $((TESTS - SKIPS)).
14977Maybe a bad filter ('$FILTER') or a bad configuration?
14978EOF
14979 if [ $FAILS -eq 0 ]; then
14980 FAILS=1
14981 fi
14982 fi
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]14983fi
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]14984
Tom Cosgrovefc0e79e2023-01-13 12:13:41 +0000[diff] [blame]14985if [ $FAILS -gt 255 ]; then
14986 # Clamp at 255 as caller gets exit code & 0xFF
14987 # (so 256 would be 0, or success, etc)
14988 FAILS=255
14989fi
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]14990exit $FAILS