• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1# Generated with generate_ssl_tests.pl
2
3num_tests = 14
4
5test-0 = 0-renegotiate-client-no-resume
6test-1 = 1-renegotiate-client-resume
7test-2 = 2-renegotiate-server-no-resume
8test-3 = 3-renegotiate-server-resume
9test-4 = 4-renegotiate-client-auth-require
10test-5 = 5-renegotiate-client-auth-once
11test-6 = 6-renegotiate-aead-to-non-aead
12test-7 = 7-renegotiate-non-aead-to-aead
13test-8 = 8-renegotiate-non-aead-to-non-aead
14test-9 = 9-renegotiate-aead-to-aead
15test-10 = 10-no-renegotiation-server-by-client
16test-11 = 11-no-renegotiation-server-by-server
17test-12 = 12-no-renegotiation-client-by-server
18test-13 = 13-no-renegotiation-client-by-client
19# ===========================================================
20
21[0-renegotiate-client-no-resume]
22ssl_conf = 0-renegotiate-client-no-resume-ssl
23
24[0-renegotiate-client-no-resume-ssl]
25server = 0-renegotiate-client-no-resume-server
26client = 0-renegotiate-client-no-resume-client
27
28[0-renegotiate-client-no-resume-server]
29Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
30CipherString = DEFAULT
31MaxProtocol = TLSv1.2
32Options = NoResumptionOnRenegotiation
33PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
34
35[0-renegotiate-client-no-resume-client]
36CipherString = DEFAULT
37VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
38VerifyMode = Peer
39
40[test-0]
41ExpectedResult = Success
42HandshakeMode = RenegotiateClient
43Method = TLS
44ResumptionExpected = No
45
46
47# ===========================================================
48
49[1-renegotiate-client-resume]
50ssl_conf = 1-renegotiate-client-resume-ssl
51
52[1-renegotiate-client-resume-ssl]
53server = 1-renegotiate-client-resume-server
54client = 1-renegotiate-client-resume-client
55
56[1-renegotiate-client-resume-server]
57Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
58CipherString = DEFAULT
59MaxProtocol = TLSv1.2
60PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
61
62[1-renegotiate-client-resume-client]
63CipherString = DEFAULT
64VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
65VerifyMode = Peer
66
67[test-1]
68ExpectedResult = Success
69HandshakeMode = RenegotiateClient
70Method = TLS
71ResumptionExpected = Yes
72
73
74# ===========================================================
75
76[2-renegotiate-server-no-resume]
77ssl_conf = 2-renegotiate-server-no-resume-ssl
78
79[2-renegotiate-server-no-resume-ssl]
80server = 2-renegotiate-server-no-resume-server
81client = 2-renegotiate-server-no-resume-client
82
83[2-renegotiate-server-no-resume-server]
84Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
85CipherString = DEFAULT
86MaxProtocol = TLSv1.2
87Options = NoResumptionOnRenegotiation
88PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
89
90[2-renegotiate-server-no-resume-client]
91CipherString = DEFAULT
92VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
93VerifyMode = Peer
94
95[test-2]
96ExpectedResult = Success
97HandshakeMode = RenegotiateServer
98Method = TLS
99ResumptionExpected = No
100
101
102# ===========================================================
103
104[3-renegotiate-server-resume]
105ssl_conf = 3-renegotiate-server-resume-ssl
106
107[3-renegotiate-server-resume-ssl]
108server = 3-renegotiate-server-resume-server
109client = 3-renegotiate-server-resume-client
110
111[3-renegotiate-server-resume-server]
112Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
113CipherString = DEFAULT
114MaxProtocol = TLSv1.2
115PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
116
117[3-renegotiate-server-resume-client]
118CipherString = DEFAULT
119VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
120VerifyMode = Peer
121
122[test-3]
123ExpectedResult = Success
124HandshakeMode = RenegotiateServer
125Method = TLS
126ResumptionExpected = Yes
127
128
129# ===========================================================
130
131[4-renegotiate-client-auth-require]
132ssl_conf = 4-renegotiate-client-auth-require-ssl
133
134[4-renegotiate-client-auth-require-ssl]
135server = 4-renegotiate-client-auth-require-server
136client = 4-renegotiate-client-auth-require-client
137
138[4-renegotiate-client-auth-require-server]
139Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
140CipherString = DEFAULT
141MaxProtocol = TLSv1.2
142Options = NoResumptionOnRenegotiation
143PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
144VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
145VerifyMode = Require
146
147[4-renegotiate-client-auth-require-client]
148Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
149CipherString = DEFAULT
150PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
151VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
152VerifyMode = Peer
153
154[test-4]
155ExpectedResult = Success
156HandshakeMode = RenegotiateServer
157Method = TLS
158ResumptionExpected = No
159
160
161# ===========================================================
162
163[5-renegotiate-client-auth-once]
164ssl_conf = 5-renegotiate-client-auth-once-ssl
165
166[5-renegotiate-client-auth-once-ssl]
167server = 5-renegotiate-client-auth-once-server
168client = 5-renegotiate-client-auth-once-client
169
170[5-renegotiate-client-auth-once-server]
171Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
172CipherString = DEFAULT
173MaxProtocol = TLSv1.2
174Options = NoResumptionOnRenegotiation
175PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
176VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
177VerifyMode = Once
178
179[5-renegotiate-client-auth-once-client]
180Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
181CipherString = DEFAULT
182PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
183VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
184VerifyMode = Peer
185
186[test-5]
187ExpectedResult = Success
188HandshakeMode = RenegotiateServer
189Method = TLS
190ResumptionExpected = No
191
192
193# ===========================================================
194
195[6-renegotiate-aead-to-non-aead]
196ssl_conf = 6-renegotiate-aead-to-non-aead-ssl
197
198[6-renegotiate-aead-to-non-aead-ssl]
199server = 6-renegotiate-aead-to-non-aead-server
200client = 6-renegotiate-aead-to-non-aead-client
201
202[6-renegotiate-aead-to-non-aead-server]
203Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
204CipherString = DEFAULT
205Options = NoResumptionOnRenegotiation
206PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
207
208[6-renegotiate-aead-to-non-aead-client]
209CipherString = AES128-GCM-SHA256
210MaxProtocol = TLSv1.2
211VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
212VerifyMode = Peer
213
214[test-6]
215ExpectedResult = Success
216HandshakeMode = RenegotiateClient
217Method = TLS
218ResumptionExpected = No
219client = 6-renegotiate-aead-to-non-aead-client-extra
220
221[6-renegotiate-aead-to-non-aead-client-extra]
222RenegotiateCiphers = AES128-SHA
223
224
225# ===========================================================
226
227[7-renegotiate-non-aead-to-aead]
228ssl_conf = 7-renegotiate-non-aead-to-aead-ssl
229
230[7-renegotiate-non-aead-to-aead-ssl]
231server = 7-renegotiate-non-aead-to-aead-server
232client = 7-renegotiate-non-aead-to-aead-client
233
234[7-renegotiate-non-aead-to-aead-server]
235Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
236CipherString = DEFAULT
237Options = NoResumptionOnRenegotiation
238PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
239
240[7-renegotiate-non-aead-to-aead-client]
241CipherString = AES128-SHA
242MaxProtocol = TLSv1.2
243VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
244VerifyMode = Peer
245
246[test-7]
247ExpectedResult = Success
248HandshakeMode = RenegotiateClient
249Method = TLS
250ResumptionExpected = No
251client = 7-renegotiate-non-aead-to-aead-client-extra
252
253[7-renegotiate-non-aead-to-aead-client-extra]
254RenegotiateCiphers = AES128-GCM-SHA256
255
256
257# ===========================================================
258
259[8-renegotiate-non-aead-to-non-aead]
260ssl_conf = 8-renegotiate-non-aead-to-non-aead-ssl
261
262[8-renegotiate-non-aead-to-non-aead-ssl]
263server = 8-renegotiate-non-aead-to-non-aead-server
264client = 8-renegotiate-non-aead-to-non-aead-client
265
266[8-renegotiate-non-aead-to-non-aead-server]
267Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
268CipherString = DEFAULT
269Options = NoResumptionOnRenegotiation
270PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
271
272[8-renegotiate-non-aead-to-non-aead-client]
273CipherString = AES128-SHA
274MaxProtocol = TLSv1.2
275VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
276VerifyMode = Peer
277
278[test-8]
279ExpectedResult = Success
280HandshakeMode = RenegotiateClient
281Method = TLS
282ResumptionExpected = No
283client = 8-renegotiate-non-aead-to-non-aead-client-extra
284
285[8-renegotiate-non-aead-to-non-aead-client-extra]
286RenegotiateCiphers = AES256-SHA
287
288
289# ===========================================================
290
291[9-renegotiate-aead-to-aead]
292ssl_conf = 9-renegotiate-aead-to-aead-ssl
293
294[9-renegotiate-aead-to-aead-ssl]
295server = 9-renegotiate-aead-to-aead-server
296client = 9-renegotiate-aead-to-aead-client
297
298[9-renegotiate-aead-to-aead-server]
299Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
300CipherString = DEFAULT
301Options = NoResumptionOnRenegotiation
302PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
303
304[9-renegotiate-aead-to-aead-client]
305CipherString = AES128-GCM-SHA256
306MaxProtocol = TLSv1.2
307VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
308VerifyMode = Peer
309
310[test-9]
311ExpectedResult = Success
312HandshakeMode = RenegotiateClient
313Method = TLS
314ResumptionExpected = No
315client = 9-renegotiate-aead-to-aead-client-extra
316
317[9-renegotiate-aead-to-aead-client-extra]
318RenegotiateCiphers = AES256-GCM-SHA384
319
320
321# ===========================================================
322
323[10-no-renegotiation-server-by-client]
324ssl_conf = 10-no-renegotiation-server-by-client-ssl
325
326[10-no-renegotiation-server-by-client-ssl]
327server = 10-no-renegotiation-server-by-client-server
328client = 10-no-renegotiation-server-by-client-client
329
330[10-no-renegotiation-server-by-client-server]
331Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
332CipherString = DEFAULT
333MaxProtocol = TLSv1.2
334Options = NoRenegotiation
335PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
336
337[10-no-renegotiation-server-by-client-client]
338CipherString = DEFAULT
339VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
340VerifyMode = Peer
341
342[test-10]
343ExpectedResult = ClientFail
344HandshakeMode = RenegotiateClient
345Method = TLS
346ResumptionExpected = No
347
348
349# ===========================================================
350
351[11-no-renegotiation-server-by-server]
352ssl_conf = 11-no-renegotiation-server-by-server-ssl
353
354[11-no-renegotiation-server-by-server-ssl]
355server = 11-no-renegotiation-server-by-server-server
356client = 11-no-renegotiation-server-by-server-client
357
358[11-no-renegotiation-server-by-server-server]
359Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
360CipherString = DEFAULT
361MaxProtocol = TLSv1.2
362Options = NoRenegotiation
363PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
364
365[11-no-renegotiation-server-by-server-client]
366CipherString = DEFAULT
367VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
368VerifyMode = Peer
369
370[test-11]
371ExpectedResult = ServerFail
372HandshakeMode = RenegotiateServer
373Method = TLS
374ResumptionExpected = No
375
376
377# ===========================================================
378
379[12-no-renegotiation-client-by-server]
380ssl_conf = 12-no-renegotiation-client-by-server-ssl
381
382[12-no-renegotiation-client-by-server-ssl]
383server = 12-no-renegotiation-client-by-server-server
384client = 12-no-renegotiation-client-by-server-client
385
386[12-no-renegotiation-client-by-server-server]
387Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
388CipherString = DEFAULT
389MaxProtocol = TLSv1.2
390PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
391
392[12-no-renegotiation-client-by-server-client]
393CipherString = DEFAULT
394Options = NoRenegotiation
395VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
396VerifyMode = Peer
397
398[test-12]
399ExpectedResult = ServerFail
400HandshakeMode = RenegotiateServer
401Method = TLS
402ResumptionExpected = No
403
404
405# ===========================================================
406
407[13-no-renegotiation-client-by-client]
408ssl_conf = 13-no-renegotiation-client-by-client-ssl
409
410[13-no-renegotiation-client-by-client-ssl]
411server = 13-no-renegotiation-client-by-client-server
412client = 13-no-renegotiation-client-by-client-client
413
414[13-no-renegotiation-client-by-client-server]
415Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
416CipherString = DEFAULT
417MaxProtocol = TLSv1.2
418PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
419
420[13-no-renegotiation-client-by-client-client]
421CipherString = DEFAULT
422Options = NoRenegotiation
423VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
424VerifyMode = Peer
425
426[test-13]
427ExpectedResult = ClientFail
428HandshakeMode = RenegotiateClient
429Method = TLS
430ResumptionExpected = No
431
432
433