Add some missing dependencies: EXTENDED_MASTER_SECRET, CACHE

This commit is not necessarily complete, but it's a step forward. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2025-01-07 06:35:27 +00:00 · 2022-02-25 19:51:52 +01:00 · 2022-02-25 19:51:52 +01:00 · 111fde4ce9
parent dff48c1c65
commit 111fde4ce9
1 changed files with 22 additions and 0 deletions
--- a/tests/ssl-opt.sh
+++ b/tests/ssl-opt.sh
@ -2663,6 +2663,7 @@ run_test    "Encrypt then MAC: client enabled, server SSLv3" \

 # Tests for Extended Master Secret extension

+requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
 run_test    "Extended Master Secret: default" \
            "$P_SRV debug_level=3" \
            "$P_CLI debug_level=3" \
@ -2674,6 +2675,7 @@ run_test    "Extended Master Secret: default" \
            -c "session hash for extended master secret" \
            -s "session hash for extended master secret"

+requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
 run_test    "Extended Master Secret: client enabled, server disabled" \
            "$P_SRV debug_level=3 extended_ms=0" \
            "$P_CLI debug_level=3 extended_ms=1" \
@ -2685,6 +2687,7 @@ run_test    "Extended Master Secret: client enabled, server disabled" \
            -C "session hash for extended master secret" \
            -S "session hash for extended master secret"

+requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
 run_test    "Extended Master Secret: client disabled, server enabled" \
            "$P_SRV debug_level=3 extended_ms=1" \
            "$P_CLI debug_level=3 extended_ms=0" \
@ -3127,6 +3130,7 @@ run_test    "Session resume using cache: cache_max=0" \
            -S "a session has been resumed" \
            -C "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache: cache_max=1" \
            "$P_SRV debug_level=3 tickets=0 cache_max=1" \
            "$P_CLI debug_level=3 tickets=0 reconnect=1" \
@ -3136,6 +3140,7 @@ run_test    "Session resume using cache: cache_max=1" \
            -s "a session has been resumed" \
            -c "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache: timeout > delay" \
            "$P_SRV debug_level=3 tickets=0" \
            "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_delay=0" \
@ -3145,6 +3150,7 @@ run_test    "Session resume using cache: timeout > delay" \
            -s "a session has been resumed" \
            -c "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache: timeout < delay" \
            "$P_SRV debug_level=3 tickets=0 cache_timeout=1" \
            "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_delay=2" \
@ -3154,6 +3160,7 @@ run_test    "Session resume using cache: timeout < delay" \
            -S "a session has been resumed" \
            -C "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache: no timeout" \
            "$P_SRV debug_level=3 tickets=0 cache_timeout=0" \
            "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_delay=2" \
@ -3163,6 +3170,7 @@ run_test    "Session resume using cache: no timeout" \
            -s "a session has been resumed" \
            -c "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache: session copy" \
            "$P_SRV debug_level=3 tickets=0" \
            "$P_CLI debug_level=3 tickets=0 reconnect=1 reco_mode=0" \
@ -3172,6 +3180,7 @@ run_test    "Session resume using cache: session copy" \
            -s "a session has been resumed" \
            -c "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache: openssl client" \
            "$P_SRV debug_level=3 tickets=0" \
            "( $O_CLI -sess_out $SESSION; \
@ -3184,6 +3193,7 @@ run_test    "Session resume using cache: openssl client" \
            -S "session successfully restored from ticket" \
            -s "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache: openssl server" \
            "$O_SRV" \
            "$P_CLI debug_level=3 tickets=0 reconnect=1" \
@ -3194,6 +3204,7 @@ run_test    "Session resume using cache: openssl server" \

 # Tests for Session Resume based on session-ID and cache, DTLS

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache, DTLS: tickets enabled on client" \
            "$P_SRV dtls=1 debug_level=3 tickets=0" \
            "$P_CLI dtls=1 debug_level=3 tickets=1 reconnect=1 skip_close_notify=1" \
@ -3208,6 +3219,7 @@ run_test    "Session resume using cache, DTLS: tickets enabled on client" \
            -s "a session has been resumed" \
            -c "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache, DTLS: tickets enabled on server" \
            "$P_SRV dtls=1 debug_level=3 tickets=1" \
            "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
@ -3222,6 +3234,7 @@ run_test    "Session resume using cache, DTLS: tickets enabled on server" \
            -s "a session has been resumed" \
            -c "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache, DTLS: cache_max=0" \
            "$P_SRV dtls=1 debug_level=3 tickets=0 cache_max=0" \
            "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
@ -3231,6 +3244,7 @@ run_test    "Session resume using cache, DTLS: cache_max=0" \
            -S "a session has been resumed" \
            -C "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache, DTLS: cache_max=1" \
            "$P_SRV dtls=1 debug_level=3 tickets=0 cache_max=1" \
            "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
@ -3240,6 +3254,7 @@ run_test    "Session resume using cache, DTLS: cache_max=1" \
            -s "a session has been resumed" \
            -c "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache, DTLS: timeout > delay" \
            "$P_SRV dtls=1 debug_level=3 tickets=0" \
            "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=0" \
@ -3249,6 +3264,7 @@ run_test    "Session resume using cache, DTLS: timeout > delay" \
            -s "a session has been resumed" \
            -c "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache, DTLS: timeout < delay" \
            "$P_SRV dtls=1 debug_level=3 tickets=0 cache_timeout=1" \
            "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=2" \
@ -3258,6 +3274,7 @@ run_test    "Session resume using cache, DTLS: timeout < delay" \
            -S "a session has been resumed" \
            -C "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache, DTLS: no timeout" \
            "$P_SRV dtls=1 debug_level=3 tickets=0 cache_timeout=0" \
            "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=2" \
@ -3267,6 +3284,7 @@ run_test    "Session resume using cache, DTLS: no timeout" \
            -s "a session has been resumed" \
            -c "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache, DTLS: session copy" \
            "$P_SRV dtls=1 debug_level=3 tickets=0" \
            "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_mode=0" \
@ -3279,6 +3297,7 @@ run_test    "Session resume using cache, DTLS: session copy" \
 # For reasons that aren't fully understood, this test randomly fails with high
 # probability with OpenSSL 1.0.2g on the CI, see #5012.
 requires_openssl_next
+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache, DTLS: openssl client" \
            "$P_SRV dtls=1 debug_level=3 tickets=0" \
            "( $O_NEXT_CLI -dtls1 -sess_out $SESSION; \
@ -3291,6 +3310,7 @@ run_test    "Session resume using cache, DTLS: openssl client" \
            -S "session successfully restored from ticket" \
            -s "a session has been resumed"

+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "Session resume using cache, DTLS: openssl server" \
            "$O_SRV -dtls1" \
            "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1" \
@ -10000,6 +10020,7 @@ run_test    "DTLS proxy: 3d, max handshake, nbio" \
            -c "HTTP/1.0 200 OK"

 client_needs_more_time 4
+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "DTLS proxy: 3d, min handshake, resumption" \
            -p "$P_PXY drop=5 delay=5 duplicate=5" \
            "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
@ -10014,6 +10035,7 @@ run_test    "DTLS proxy: 3d, min handshake, resumption" \
            -c "HTTP/1.0 200 OK"

 client_needs_more_time 4
+requires_config_enabled MBEDTLS_SSL_CACHE_C
 run_test    "DTLS proxy: 3d, min handshake, resumption, nbio" \
            -p "$P_PXY drop=5 delay=5 duplicate=5" \
            "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \