Add a test for SSLv3 with extensions, server side

This test verifies if the server parses or sends extensions when the protocol is SSLv3.
2024-11-22 17:15:38 +01:00 · 2016-05-06 13:48:23 +01:00 · 2016-05-06 13:48:23 +01:00 · 00efff7469
commit 00efff7469
parent 0b98d2f086
1 changed files with 12 additions and 2 deletions
--- a/tests/ssl-opt.sh
+++ b/tests/ssl-opt.sh
@ -715,7 +715,7 @@ run_test    "Encrypt then MAC: client enabled, server SSLv3" \
            "$P_CLI debug_level=3 min_version=ssl3" \
            0 \
            -c "client hello, adding encrypt_then_mac extension" \
-            -s "found encrypt then mac extension" \
+            -S "found encrypt then mac extension" \
            -S "server hello, adding encrypt then mac extension" \
            -C "found encrypt_then_mac extension" \
            -C "using encrypt then mac" \
@ -774,7 +774,7 @@ run_test    "Extended Master Secret: client enabled, server SSLv3" \
            "$P_CLI debug_level=3 min_version=ssl3" \
            0 \
            -c "client hello, adding extended_master_secret extension" \
-            -s "found extended master secret extension" \
+            -S "found extended master secret extension" \
            -S "server hello, adding extended master secret extension" \
            -C "found extended_master_secret extension" \
            -C "using extended master secret" \
@ -2848,6 +2848,16 @@ run_test    "Small packet TLS 1.2 AEAD shorter tag" \
            0 \
            -s "Read from client: 1 bytes read"

+# A test for extensions in SSLv3
+
+requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
+run_test    "SSLv3 with extensions, server side" \
+            "$P_SRV min_version=ssl3 debug_level=3" \
+            "$P_CLI force_version=ssl3 tickets=1 max_frag_len=4096 alpn=abc,1234" \
+            0 \
+            -S "dumping 'client hello extensions'" \
+            -S "server hello, total extension length:"
+
 # Test for large packets

 requires_config_enabled MBEDTLS_SSL_PROTO_SSL3