mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2024-11-23 18:15:37 +01:00
Add missing large and small packet tests for ssl_server2
This commit is contained in:
parent
6b3ec17463
commit
d5ab1883b7
486
tests/ssl-opt.sh
486
tests/ssl-opt.sh
@ -3583,10 +3583,10 @@ run_test "mbedtls_ssl_get_bytes_avail: extra data" \
|
|||||||
0 \
|
0 \
|
||||||
-s "Read from client: 500 bytes read (.*+.*)"
|
-s "Read from client: 500 bytes read (.*+.*)"
|
||||||
|
|
||||||
# Tests for small packets
|
# Tests for small client packets
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
||||||
run_test "Small packet SSLv3 BlockCipher" \
|
run_test "Small client packet SSLv3 BlockCipher" \
|
||||||
"$P_SRV min_version=ssl3" \
|
"$P_SRV min_version=ssl3" \
|
||||||
"$P_CLI request_size=1 force_version=ssl3 \
|
"$P_CLI request_size=1 force_version=ssl3 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
@ -3594,21 +3594,21 @@ run_test "Small packet SSLv3 BlockCipher" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
||||||
run_test "Small packet SSLv3 StreamCipher" \
|
run_test "Small client packet SSLv3 StreamCipher" \
|
||||||
"$P_SRV min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
"$P_CLI request_size=1 force_version=ssl3 \
|
"$P_CLI request_size=1 force_version=ssl3 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.0 BlockCipher" \
|
run_test "Small client packet TLS 1.0 BlockCipher" \
|
||||||
"$P_SRV" \
|
"$P_SRV" \
|
||||||
"$P_CLI request_size=1 force_version=tls1 \
|
"$P_CLI request_size=1 force_version=tls1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.0 BlockCipher, without EtM" \
|
run_test "Small client packet TLS 1.0 BlockCipher, without EtM" \
|
||||||
"$P_SRV" \
|
"$P_SRV" \
|
||||||
"$P_CLI request_size=1 force_version=tls1 etm=0 \
|
"$P_CLI request_size=1 force_version=tls1 etm=0 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
@ -3616,7 +3616,7 @@ run_test "Small packet TLS 1.0 BlockCipher, without EtM" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.0 BlockCipher, truncated MAC" \
|
run_test "Small client packet TLS 1.0 BlockCipher, truncated MAC" \
|
||||||
"$P_SRV trunc_hmac=1" \
|
"$P_SRV trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1 \
|
"$P_CLI request_size=1 force_version=tls1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
||||||
@ -3624,21 +3624,21 @@ run_test "Small packet TLS 1.0 BlockCipher, truncated MAC" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.0 BlockCipher, without EtM, truncated MAC" \
|
run_test "Small client packet TLS 1.0 BlockCipher, without EtM, truncated MAC" \
|
||||||
"$P_SRV trunc_hmac=1" \
|
"$P_SRV trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1 \
|
"$P_CLI request_size=1 force_version=tls1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.0 StreamCipher" \
|
run_test "Small client packet TLS 1.0 StreamCipher" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
"$P_CLI request_size=1 force_version=tls1 \
|
"$P_CLI request_size=1 force_version=tls1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.0 StreamCipher, without EtM" \
|
run_test "Small client packet TLS 1.0 StreamCipher, without EtM" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
"$P_CLI request_size=1 force_version=tls1 \
|
"$P_CLI request_size=1 force_version=tls1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
||||||
@ -3646,7 +3646,7 @@ run_test "Small packet TLS 1.0 StreamCipher, without EtM" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.0 StreamCipher, truncated MAC" \
|
run_test "Small client packet TLS 1.0 StreamCipher, truncated MAC" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1 \
|
"$P_CLI request_size=1 force_version=tls1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
@ -3654,21 +3654,21 @@ run_test "Small packet TLS 1.0 StreamCipher, truncated MAC" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
|
run_test "Small client packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
|
"$P_CLI request_size=1 force_version=tls1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
|
||||||
trunc_hmac=1 etm=0" \
|
trunc_hmac=1 etm=0" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.1 BlockCipher" \
|
run_test "Small client packet TLS 1.1 BlockCipher" \
|
||||||
"$P_SRV" \
|
"$P_SRV" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_1 \
|
"$P_CLI request_size=1 force_version=tls1_1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.1 BlockCipher, without EtM" \
|
run_test "Small client packet TLS 1.1 BlockCipher, without EtM" \
|
||||||
"$P_SRV" \
|
"$P_SRV" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_1 \
|
"$P_CLI request_size=1 force_version=tls1_1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
|
||||||
@ -3676,7 +3676,7 @@ run_test "Small packet TLS 1.1 BlockCipher, without EtM" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.1 BlockCipher, truncated MAC" \
|
run_test "Small client packet TLS 1.1 BlockCipher, truncated MAC" \
|
||||||
"$P_SRV trunc_hmac=1" \
|
"$P_SRV trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_1 \
|
"$P_CLI request_size=1 force_version=tls1_1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
||||||
@ -3684,21 +3684,21 @@ run_test "Small packet TLS 1.1 BlockCipher, truncated MAC" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
|
run_test "Small client packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
|
||||||
"$P_SRV trunc_hmac=1" \
|
"$P_SRV trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_1 \
|
"$P_CLI request_size=1 force_version=tls1_1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.1 StreamCipher" \
|
run_test "Small client packet TLS 1.1 StreamCipher" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_1 \
|
"$P_CLI request_size=1 force_version=tls1_1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.1 StreamCipher, without EtM" \
|
run_test "Small client packet TLS 1.1 StreamCipher, without EtM" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_1 \
|
"$P_CLI request_size=1 force_version=tls1_1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
||||||
@ -3706,7 +3706,7 @@ run_test "Small packet TLS 1.1 StreamCipher, without EtM" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.1 StreamCipher, truncated MAC" \
|
run_test "Small client packet TLS 1.1 StreamCipher, truncated MAC" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_1 \
|
"$P_CLI request_size=1 force_version=tls1_1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
@ -3714,28 +3714,28 @@ run_test "Small packet TLS 1.1 StreamCipher, truncated MAC" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
|
run_test "Small client packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_1 \
|
"$P_CLI request_size=1 force_version=tls1_1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.2 BlockCipher" \
|
run_test "Small client packet TLS 1.2 BlockCipher" \
|
||||||
"$P_SRV" \
|
"$P_SRV" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.2 BlockCipher, without EtM" \
|
run_test "Small client packet TLS 1.2 BlockCipher, without EtM" \
|
||||||
"$P_SRV" \
|
"$P_SRV" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.2 BlockCipher larger MAC" \
|
run_test "Small client packet TLS 1.2 BlockCipher larger MAC" \
|
||||||
"$P_SRV" \
|
"$P_SRV" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
|
force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
|
||||||
@ -3743,7 +3743,7 @@ run_test "Small packet TLS 1.2 BlockCipher larger MAC" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.2 BlockCipher, truncated MAC" \
|
run_test "Small client packet TLS 1.2 BlockCipher, truncated MAC" \
|
||||||
"$P_SRV trunc_hmac=1" \
|
"$P_SRV trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
||||||
@ -3751,21 +3751,21 @@ run_test "Small packet TLS 1.2 BlockCipher, truncated MAC" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
|
run_test "Small client packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
|
||||||
"$P_SRV trunc_hmac=1" \
|
"$P_SRV trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.2 StreamCipher" \
|
run_test "Small client packet TLS 1.2 StreamCipher" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.2 StreamCipher, without EtM" \
|
run_test "Small client packet TLS 1.2 StreamCipher, without EtM" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
||||||
@ -3773,7 +3773,7 @@ run_test "Small packet TLS 1.2 StreamCipher, without EtM" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.2 StreamCipher, truncated MAC" \
|
run_test "Small client packet TLS 1.2 StreamCipher, truncated MAC" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
@ -3781,31 +3781,31 @@ run_test "Small packet TLS 1.2 StreamCipher, truncated MAC" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
|
run_test "Small client packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
|
||||||
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
"$P_SRV arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.2 AEAD" \
|
run_test "Small client packet TLS 1.2 AEAD" \
|
||||||
"$P_SRV" \
|
"$P_SRV" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
run_test "Small packet TLS 1.2 AEAD shorter tag" \
|
run_test "Small client packet TLS 1.2 AEAD shorter tag" \
|
||||||
"$P_SRV" \
|
"$P_SRV" \
|
||||||
"$P_CLI request_size=1 force_version=tls1_2 \
|
"$P_CLI request_size=1 force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
# Tests for small packets in DTLS
|
# Tests for small client packets in DTLS
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
run_test "Small packet DTLS 1.0" \
|
run_test "Small client packet DTLS 1.0" \
|
||||||
"$P_SRV dtls=1 force_version=dtls1" \
|
"$P_SRV dtls=1 force_version=dtls1" \
|
||||||
"$P_CLI dtls=1 request_size=1 \
|
"$P_CLI dtls=1 request_size=1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
@ -3813,7 +3813,7 @@ run_test "Small packet DTLS 1.0" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
run_test "Small packet DTLS 1.0, without EtM" \
|
run_test "Small client packet DTLS 1.0, without EtM" \
|
||||||
"$P_SRV dtls=1 force_version=dtls1 etm=0" \
|
"$P_SRV dtls=1 force_version=dtls1 etm=0" \
|
||||||
"$P_CLI dtls=1 request_size=1 \
|
"$P_CLI dtls=1 request_size=1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
@ -3822,7 +3822,7 @@ run_test "Small packet DTLS 1.0, without EtM" \
|
|||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet DTLS 1.0, truncated hmac" \
|
run_test "Small client packet DTLS 1.0, truncated hmac" \
|
||||||
"$P_SRV dtls=1 force_version=dtls1 trunc_hmac=1" \
|
"$P_SRV dtls=1 force_version=dtls1 trunc_hmac=1" \
|
||||||
"$P_CLI dtls=1 request_size=1 trunc_hmac=1 \
|
"$P_CLI dtls=1 request_size=1 trunc_hmac=1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
@ -3831,7 +3831,7 @@ run_test "Small packet DTLS 1.0, truncated hmac" \
|
|||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet DTLS 1.0, without EtM, truncated MAC" \
|
run_test "Small client packet DTLS 1.0, without EtM, truncated MAC" \
|
||||||
"$P_SRV dtls=1 force_version=dtls1 trunc_hmac=1 etm=0" \
|
"$P_SRV dtls=1 force_version=dtls1 trunc_hmac=1 etm=0" \
|
||||||
"$P_CLI dtls=1 request_size=1 \
|
"$P_CLI dtls=1 request_size=1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
|
||||||
@ -3839,7 +3839,7 @@ run_test "Small packet DTLS 1.0, without EtM, truncated MAC" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
run_test "Small packet DTLS 1.2" \
|
run_test "Small client packet DTLS 1.2" \
|
||||||
"$P_SRV dtls=1 force_version=dtls1_2" \
|
"$P_SRV dtls=1 force_version=dtls1_2" \
|
||||||
"$P_CLI dtls=1 request_size=1 \
|
"$P_CLI dtls=1 request_size=1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
@ -3847,7 +3847,7 @@ run_test "Small packet DTLS 1.2" \
|
|||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
run_test "Small packet DTLS 1.2, without EtM" \
|
run_test "Small client packet DTLS 1.2, without EtM" \
|
||||||
"$P_SRV dtls=1 force_version=dtls1_2 etm=0" \
|
"$P_SRV dtls=1 force_version=dtls1_2 etm=0" \
|
||||||
"$P_CLI dtls=1 request_size=1 \
|
"$P_CLI dtls=1 request_size=1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
@ -3856,7 +3856,7 @@ run_test "Small packet DTLS 1.2, without EtM" \
|
|||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet DTLS 1.2, truncated hmac" \
|
run_test "Small client packet DTLS 1.2, truncated hmac" \
|
||||||
"$P_SRV dtls=1 force_version=dtls1_2 trunc_hmac=1" \
|
"$P_SRV dtls=1 force_version=dtls1_2 trunc_hmac=1" \
|
||||||
"$P_CLI dtls=1 request_size=1 \
|
"$P_CLI dtls=1 request_size=1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
||||||
@ -3865,13 +3865,302 @@ run_test "Small packet DTLS 1.2, truncated hmac" \
|
|||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Small packet DTLS 1.2, without EtM, truncated MAC" \
|
run_test "Small client packet DTLS 1.2, without EtM, truncated MAC" \
|
||||||
"$P_SRV dtls=1 force_version=dtls1_2 trunc_hmac=1 etm=0" \
|
"$P_SRV dtls=1 force_version=dtls1_2 trunc_hmac=1 etm=0" \
|
||||||
"$P_CLI dtls=1 request_size=1 \
|
"$P_CLI dtls=1 request_size=1 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
|
||||||
0 \
|
0 \
|
||||||
-s "Read from client: 1 bytes read"
|
-s "Read from client: 1 bytes read"
|
||||||
|
|
||||||
|
# Tests for small server packets
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
||||||
|
run_test "Small server packet SSLv3 BlockCipher" \
|
||||||
|
"$P_SRV response_size=1 min_version=ssl3" \
|
||||||
|
"$P_CLI force_version=ssl3 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
||||||
|
run_test "Small server packet SSLv3 StreamCipher" \
|
||||||
|
"$P_SRV response_size=1 min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=ssl3 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.0 BlockCipher" \
|
||||||
|
"$P_SRV response_size=1" \
|
||||||
|
"$P_CLI force_version=tls1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.0 BlockCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=1" \
|
||||||
|
"$P_CLI force_version=tls1 etm=0 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.0 BlockCipher, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.0 BlockCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.0 StreamCipher" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.0 StreamCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.0 StreamCipher, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
|
||||||
|
trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.1 BlockCipher" \
|
||||||
|
"$P_SRV response_size=1" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.1 BlockCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=1" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.1 BlockCipher, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.1 StreamCipher" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.1 StreamCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.1 StreamCipher, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.2 BlockCipher" \
|
||||||
|
"$P_SRV response_size=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.2 BlockCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.2 BlockCipher larger MAC" \
|
||||||
|
"$P_SRV response_size=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.2 BlockCipher, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.2 StreamCipher" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.2 StreamCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.2 StreamCipher, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=1 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.2 AEAD" \
|
||||||
|
"$P_SRV response_size=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
run_test "Small server packet TLS 1.2 AEAD shorter tag" \
|
||||||
|
"$P_SRV response_size=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
# Tests for small server packets in DTLS
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
run_test "Small server packet DTLS 1.0" \
|
||||||
|
"$P_SRV dtls=1 response_size=1 force_version=dtls1" \
|
||||||
|
"$P_CLI dtls=1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
run_test "Small server packet DTLS 1.0, without EtM" \
|
||||||
|
"$P_SRV dtls=1 response_size=1 force_version=dtls1 etm=0" \
|
||||||
|
"$P_CLI dtls=1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet DTLS 1.0, truncated hmac" \
|
||||||
|
"$P_SRV dtls=1 response_size=1 force_version=dtls1 trunc_hmac=1" \
|
||||||
|
"$P_CLI dtls=1 trunc_hmac=1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet DTLS 1.0, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV dtls=1 response_size=1 force_version=dtls1 trunc_hmac=1 etm=0" \
|
||||||
|
"$P_CLI dtls=1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
run_test "Small server packet DTLS 1.2" \
|
||||||
|
"$P_SRV dtls=1 response_size=1 force_version=dtls1_2" \
|
||||||
|
"$P_CLI dtls=1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
run_test "Small server packet DTLS 1.2, without EtM" \
|
||||||
|
"$P_SRV dtls=1 response_size=1 force_version=dtls1_2 etm=0" \
|
||||||
|
"$P_CLI dtls=1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet DTLS 1.2, truncated hmac" \
|
||||||
|
"$P_SRV dtls=1 response_size=1 force_version=dtls1_2 trunc_hmac=1" \
|
||||||
|
"$P_CLI dtls=1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Small server packet DTLS 1.2, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV dtls=1 response_size=1 force_version=dtls1_2 trunc_hmac=1 etm=0" \
|
||||||
|
"$P_CLI dtls=1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1"\
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
# A test for extensions in SSLv3
|
# A test for extensions in SSLv3
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
||||||
@ -4195,6 +4484,15 @@ run_test "Large server packet TLS 1.0 BlockCipher" \
|
|||||||
-c "16383 bytes read"\
|
-c "16383 bytes read"\
|
||||||
-C "Read from server: 16384 bytes read"
|
-C "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
run_test "Large server packet TLS 1.0 BlockCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=16384" \
|
||||||
|
"$P_CLI force_version=tls1 etm=0 recsplit=0 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 1 bytes read"\
|
||||||
|
-c "16383 bytes read"\
|
||||||
|
-C "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Large server packet TLS 1.0 BlockCipher truncated MAC" \
|
run_test "Large server packet TLS 1.0 BlockCipher truncated MAC" \
|
||||||
"$P_SRV response_size=16384" \
|
"$P_SRV response_size=16384" \
|
||||||
@ -4213,6 +4511,41 @@ run_test "Large server packet TLS 1.0 StreamCipher truncated MAC" \
|
|||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA \
|
||||||
trunc_hmac=1" \
|
trunc_hmac=1" \
|
||||||
0 \
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
run_test "Large server packet TLS 1.0 StreamCipher" \
|
||||||
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
run_test "Large server packet TLS 1.0 StreamCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Large server packet TLS 1.0 StreamCipher, truncated MAC" \
|
||||||
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Large server packet TLS 1.0 StreamCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
-c "Read from server: 16384 bytes read"
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
run_test "Large server packet TLS 1.1 BlockCipher" \
|
run_test "Large server packet TLS 1.1 BlockCipher" \
|
||||||
@ -4222,11 +4555,12 @@ run_test "Large server packet TLS 1.1 BlockCipher" \
|
|||||||
0 \
|
0 \
|
||||||
-c "Read from server: 16384 bytes read"
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
run_test "Large server packet TLS 1.1 StreamCipher" \
|
run_test "Large server packet TLS 1.1 BlockCipher, without EtM" \
|
||||||
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV response_size=16384" \
|
||||||
"$P_CLI force_version=tls1_1 \
|
"$P_CLI force_version=tls1_1 etm=0 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
0 \
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
-c "Read from server: 16384 bytes read"
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
@ -4238,6 +4572,30 @@ run_test "Large server packet TLS 1.1 BlockCipher truncated MAC" \
|
|||||||
0 \
|
0 \
|
||||||
-c "Read from server: 16384 bytes read"
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Large server packet TLS 1.1 BlockCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=16384 trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
run_test "Large server packet TLS 1.1 StreamCipher" \
|
||||||
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
0 \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
run_test "Large server packet TLS 1.1 StreamCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
run_test "Large server packet TLS 1.1 StreamCipher truncated MAC" \
|
run_test "Large server packet TLS 1.1 StreamCipher truncated MAC" \
|
||||||
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
@ -4247,6 +4605,14 @@ run_test "Large server packet TLS 1.1 StreamCipher truncated MAC" \
|
|||||||
0 \
|
0 \
|
||||||
-c "Read from server: 16384 bytes read"
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
run_test "Large server packet TLS 1.1 StreamCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_1 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
run_test "Large server packet TLS 1.2 BlockCipher" \
|
run_test "Large server packet TLS 1.2 BlockCipher" \
|
||||||
"$P_SRV response_size=16384" \
|
"$P_SRV response_size=16384" \
|
||||||
"$P_CLI force_version=tls1_2 \
|
"$P_CLI force_version=tls1_2 \
|
||||||
@ -4254,6 +4620,14 @@ run_test "Large server packet TLS 1.2 BlockCipher" \
|
|||||||
0 \
|
0 \
|
||||||
-c "Read from server: 16384 bytes read"
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
run_test "Large server packet TLS 1.2 BlockCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=16384" \
|
||||||
|
"$P_CLI force_version=tls1_2 etm=0 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
run_test "Large server packet TLS 1.2 BlockCipher larger MAC" \
|
run_test "Large server packet TLS 1.2 BlockCipher larger MAC" \
|
||||||
"$P_SRV response_size=16384" \
|
"$P_SRV response_size=16384" \
|
||||||
"$P_CLI force_version=tls1_2 \
|
"$P_CLI force_version=tls1_2 \
|
||||||
@ -4270,11 +4644,28 @@ run_test "Large server packet TLS 1.2 BlockCipher truncated MAC" \
|
|||||||
0 \
|
0 \
|
||||||
-c "Read from server: 16384 bytes read"
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
run_test "Large server packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=16384 trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
run_test "Large server packet TLS 1.2 StreamCipher" \
|
run_test "Large server packet TLS 1.2 StreamCipher" \
|
||||||
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
"$P_CLI force_version=tls1_2 \
|
"$P_CLI force_version=tls1_2 \
|
||||||
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
0 \
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
run_test "Large server packet TLS 1.2 StreamCipher, without EtM" \
|
||||||
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA etm=0" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
-c "Read from server: 16384 bytes read"
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
@ -4286,6 +4677,15 @@ run_test "Large server packet TLS 1.2 StreamCipher truncated MAC" \
|
|||||||
0 \
|
0 \
|
||||||
-c "Read from server: 16384 bytes read"
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
|
requires_config_enabled MBEDTLS_SSL_TRUNCATED_HMAC
|
||||||
|
run_test "Large server packet TLS 1.2 StreamCipher, without EtM, truncated MAC" \
|
||||||
|
"$P_SRV response_size=16384 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1" \
|
||||||
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA trunc_hmac=1 etm=0" \
|
||||||
|
0 \
|
||||||
|
-s "16384 bytes written in 1 fragments" \
|
||||||
|
-c "Read from server: 16384 bytes read"
|
||||||
|
|
||||||
run_test "Large server packet TLS 1.2 AEAD" \
|
run_test "Large server packet TLS 1.2 AEAD" \
|
||||||
"$P_SRV response_size=16384" \
|
"$P_SRV response_size=16384" \
|
||||||
"$P_CLI force_version=tls1_2 \
|
"$P_CLI force_version=tls1_2 \
|
||||||
|
Loading…
Reference in New Issue
Block a user