mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2025-01-26 14:31:07 +00:00
Add content length constraint to tests that use max_frag_len
Includes: - handshake memory tests - Connection ID (MFL) tests - DTLS fragmenting tests - SSLv3 with extensions test (backport only) Signed-off-by: Yuto Takano <yuto.takano@arm.com>
This commit is contained in:
parent
8a693efe9b
commit
a49124e528
|
@ -2423,6 +2423,7 @@ run_test "Connection ID, 3D: Cli+Srv enabled, Srv disables on renegotiation"
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
|
requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
|
||||||
requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
|
requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
|
||||||
|
requires_max_content_len 512
|
||||||
run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=512" \
|
run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=512" \
|
||||||
"$P_SRV dtls=1 cid=1 cid_val=dead debug_level=2" \
|
"$P_SRV dtls=1 cid=1 cid_val=dead debug_level=2" \
|
||||||
"$P_CLI force_ciphersuite="TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" max_frag_len=512 dtls=1 cid=1 cid_val=beef" \
|
"$P_CLI force_ciphersuite="TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" max_frag_len=512 dtls=1 cid=1 cid_val=beef" \
|
||||||
|
@ -2436,6 +2437,7 @@ run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=512" \
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
|
requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
|
||||||
requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
|
requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
|
||||||
|
requires_max_content_len 1024
|
||||||
run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=1024" \
|
run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=1024" \
|
||||||
"$P_SRV dtls=1 cid=1 cid_val=dead debug_level=2" \
|
"$P_SRV dtls=1 cid=1 cid_val=dead debug_level=2" \
|
||||||
"$P_CLI force_ciphersuite="TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" max_frag_len=1024 dtls=1 cid=1 cid_val=beef" \
|
"$P_CLI force_ciphersuite="TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" max_frag_len=1024 dtls=1 cid=1 cid_val=beef" \
|
||||||
|
@ -6711,8 +6713,8 @@ run_test "Small server packet DTLS 1.2, without EtM, truncated MAC" \
|
||||||
-c "Read from server: 1 bytes read"
|
-c "Read from server: 1 bytes read"
|
||||||
|
|
||||||
# A test for extensions in SSLv3
|
# A test for extensions in SSLv3
|
||||||
|
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
||||||
|
requires_max_content_len 4096
|
||||||
run_test "SSLv3 with extensions, server side" \
|
run_test "SSLv3 with extensions, server side" \
|
||||||
"$P_SRV min_version=ssl3 debug_level=3" \
|
"$P_SRV min_version=ssl3 debug_level=3" \
|
||||||
"$P_CLI force_version=ssl3 tickets=1 max_frag_len=4096 alpn=abc,1234" \
|
"$P_CLI force_version=ssl3 tickets=1 max_frag_len=4096 alpn=abc,1234" \
|
||||||
|
@ -6961,6 +6963,7 @@ run_test "Large client packet TLS 1.2 AEAD shorter tag" \
|
||||||
-s "Read from client: $MAX_CONTENT_LEN bytes read"
|
-s "Read from client: $MAX_CONTENT_LEN bytes read"
|
||||||
|
|
||||||
# Test for large server packets
|
# Test for large server packets
|
||||||
|
# The tests below fail when the server's OUT_CONTENT_LEN is less than 16384.
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
requires_config_enabled MBEDTLS_SSL_PROTO_SSL3
|
||||||
run_test "Large server packet SSLv3 StreamCipher" \
|
run_test "Large server packet SSLv3 StreamCipher" \
|
||||||
"$P_SRV response_size=16384 min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
"$P_SRV response_size=16384 min_version=ssl3 arc4=1 force_ciphersuite=TLS-RSA-WITH-RC4-128-SHA" \
|
||||||
|
@ -7982,6 +7985,7 @@ requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
||||||
|
requires_max_content_len 4096
|
||||||
run_test "DTLS fragmenting: none (for reference)" \
|
run_test "DTLS fragmenting: none (for reference)" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
crt_file=data_files/server7_int-ca.crt \
|
crt_file=data_files/server7_int-ca.crt \
|
||||||
|
@ -8002,6 +8006,7 @@ requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: server only (max_frag_len)" \
|
run_test "DTLS fragmenting: server only (max_frag_len)" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
crt_file=data_files/server7_int-ca.crt \
|
crt_file=data_files/server7_int-ca.crt \
|
||||||
|
@ -8026,6 +8031,7 @@ requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
||||||
|
requires_max_content_len 4096
|
||||||
run_test "DTLS fragmenting: server only (more) (max_frag_len)" \
|
run_test "DTLS fragmenting: server only (more) (max_frag_len)" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
crt_file=data_files/server7_int-ca.crt \
|
crt_file=data_files/server7_int-ca.crt \
|
||||||
|
@ -8046,6 +8052,7 @@ requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: client-initiated, server only (max_frag_len)" \
|
run_test "DTLS fragmenting: client-initiated, server only (max_frag_len)" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=none \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=none \
|
||||||
crt_file=data_files/server7_int-ca.crt \
|
crt_file=data_files/server7_int-ca.crt \
|
||||||
|
@ -8073,6 +8080,7 @@ requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: client-initiated, server only (max_frag_len), proxy MTU" \
|
run_test "DTLS fragmenting: client-initiated, server only (max_frag_len), proxy MTU" \
|
||||||
-p "$P_PXY mtu=1110" \
|
-p "$P_PXY mtu=1110" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=none \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=none \
|
||||||
|
@ -8094,6 +8102,7 @@ requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: client-initiated, both (max_frag_len)" \
|
run_test "DTLS fragmenting: client-initiated, both (max_frag_len)" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
crt_file=data_files/server7_int-ca.crt \
|
crt_file=data_files/server7_int-ca.crt \
|
||||||
|
@ -8121,6 +8130,7 @@ requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: client-initiated, both (max_frag_len), proxy MTU" \
|
run_test "DTLS fragmenting: client-initiated, both (max_frag_len), proxy MTU" \
|
||||||
-p "$P_PXY mtu=1110" \
|
-p "$P_PXY mtu=1110" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8141,6 +8151,7 @@ run_test "DTLS fragmenting: client-initiated, both (max_frag_len), proxy MTU"
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
|
requires_max_content_len 4096
|
||||||
run_test "DTLS fragmenting: none (for reference) (MTU)" \
|
run_test "DTLS fragmenting: none (for reference) (MTU)" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
crt_file=data_files/server7_int-ca.crt \
|
crt_file=data_files/server7_int-ca.crt \
|
||||||
|
@ -8160,6 +8171,7 @@ run_test "DTLS fragmenting: none (for reference) (MTU)" \
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
|
requires_max_content_len 4096
|
||||||
run_test "DTLS fragmenting: client (MTU)" \
|
run_test "DTLS fragmenting: client (MTU)" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
crt_file=data_files/server7_int-ca.crt \
|
crt_file=data_files/server7_int-ca.crt \
|
||||||
|
@ -8179,6 +8191,7 @@ run_test "DTLS fragmenting: client (MTU)" \
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: server (MTU)" \
|
run_test "DTLS fragmenting: server (MTU)" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
crt_file=data_files/server7_int-ca.crt \
|
crt_file=data_files/server7_int-ca.crt \
|
||||||
|
@ -8198,6 +8211,7 @@ run_test "DTLS fragmenting: server (MTU)" \
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: both (MTU=1024)" \
|
run_test "DTLS fragmenting: both (MTU=1024)" \
|
||||||
-p "$P_PXY mtu=1024" \
|
-p "$P_PXY mtu=1024" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8223,6 +8237,7 @@ requires_config_enabled MBEDTLS_SHA256_C
|
||||||
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_GCM_C
|
requires_config_enabled MBEDTLS_GCM_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: both (MTU=512)" \
|
run_test "DTLS fragmenting: both (MTU=512)" \
|
||||||
-p "$P_PXY mtu=512" \
|
-p "$P_PXY mtu=512" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8254,6 +8269,7 @@ requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_GCM_C
|
requires_config_enabled MBEDTLS_GCM_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU: auto-reduction (not valgrind)" \
|
run_test "DTLS fragmenting: proxy MTU: auto-reduction (not valgrind)" \
|
||||||
-p "$P_PXY mtu=508" \
|
-p "$P_PXY mtu=508" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8278,6 +8294,7 @@ requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_GCM_C
|
requires_config_enabled MBEDTLS_GCM_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU: auto-reduction (with valgrind)" \
|
run_test "DTLS fragmenting: proxy MTU: auto-reduction (with valgrind)" \
|
||||||
-p "$P_PXY mtu=508" \
|
-p "$P_PXY mtu=508" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8301,6 +8318,7 @@ not_with_valgrind # spurious autoreduction due to timeout
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=1024)" \
|
run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=1024)" \
|
||||||
-p "$P_PXY mtu=1024" \
|
-p "$P_PXY mtu=1024" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8330,6 +8348,7 @@ requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_GCM_C
|
requires_config_enabled MBEDTLS_GCM_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=512)" \
|
run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=512)" \
|
||||||
-p "$P_PXY mtu=512" \
|
-p "$P_PXY mtu=512" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8353,6 +8372,7 @@ not_with_valgrind # spurious autoreduction due to timeout
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=1024)" \
|
run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=1024)" \
|
||||||
-p "$P_PXY mtu=1024" \
|
-p "$P_PXY mtu=1024" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8379,6 +8399,7 @@ requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_GCM_C
|
requires_config_enabled MBEDTLS_GCM_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=512)" \
|
run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=512)" \
|
||||||
-p "$P_PXY mtu=512" \
|
-p "$P_PXY mtu=512" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8415,6 +8436,7 @@ requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_GCM_C
|
requires_config_enabled MBEDTLS_GCM_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU, resumed handshake" \
|
run_test "DTLS fragmenting: proxy MTU, resumed handshake" \
|
||||||
-p "$P_PXY mtu=1450" \
|
-p "$P_PXY mtu=1450" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8444,6 +8466,7 @@ requires_config_enabled MBEDTLS_SHA256_C
|
||||||
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
|
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
|
||||||
requires_config_enabled MBEDTLS_CHACHAPOLY_C
|
requires_config_enabled MBEDTLS_CHACHAPOLY_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU, ChachaPoly renego" \
|
run_test "DTLS fragmenting: proxy MTU, ChachaPoly renego" \
|
||||||
-p "$P_PXY mtu=512" \
|
-p "$P_PXY mtu=512" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8476,6 +8499,7 @@ requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
|
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_GCM_C
|
requires_config_enabled MBEDTLS_GCM_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU, AES-GCM renego" \
|
run_test "DTLS fragmenting: proxy MTU, AES-GCM renego" \
|
||||||
-p "$P_PXY mtu=512" \
|
-p "$P_PXY mtu=512" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8508,6 +8532,7 @@ requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
|
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_CCM_C
|
requires_config_enabled MBEDTLS_CCM_C
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU, AES-CCM renego" \
|
run_test "DTLS fragmenting: proxy MTU, AES-CCM renego" \
|
||||||
-p "$P_PXY mtu=1024" \
|
-p "$P_PXY mtu=1024" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8541,6 +8566,7 @@ requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
|
requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
|
||||||
requires_config_enabled MBEDTLS_SSL_ENCRYPT_THEN_MAC
|
requires_config_enabled MBEDTLS_SSL_ENCRYPT_THEN_MAC
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU, AES-CBC EtM renego" \
|
run_test "DTLS fragmenting: proxy MTU, AES-CBC EtM renego" \
|
||||||
-p "$P_PXY mtu=1024" \
|
-p "$P_PXY mtu=1024" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8573,6 +8599,7 @@ requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
|
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
|
requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU, AES-CBC non-EtM renego" \
|
run_test "DTLS fragmenting: proxy MTU, AES-CBC non-EtM renego" \
|
||||||
-p "$P_PXY mtu=1024" \
|
-p "$P_PXY mtu=1024" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8602,6 +8629,7 @@ requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_GCM_C
|
requires_config_enabled MBEDTLS_GCM_C
|
||||||
client_needs_more_time 2
|
client_needs_more_time 2
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU + 3d" \
|
run_test "DTLS fragmenting: proxy MTU + 3d" \
|
||||||
-p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
|
-p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
|
||||||
"$P_SRV dgram_packing=0 dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dgram_packing=0 dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8626,6 +8654,7 @@ requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
|
||||||
requires_config_enabled MBEDTLS_AES_C
|
requires_config_enabled MBEDTLS_AES_C
|
||||||
requires_config_enabled MBEDTLS_GCM_C
|
requires_config_enabled MBEDTLS_GCM_C
|
||||||
client_needs_more_time 2
|
client_needs_more_time 2
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: proxy MTU + 3d, nbio" \
|
run_test "DTLS fragmenting: proxy MTU + 3d, nbio" \
|
||||||
-p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
|
-p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
|
||||||
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
"$P_SRV dtls=1 debug_level=2 auth_mode=required \
|
||||||
|
@ -8651,6 +8680,7 @@ requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
requires_gnutls
|
requires_gnutls
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: gnutls server, DTLS 1.2" \
|
run_test "DTLS fragmenting: gnutls server, DTLS 1.2" \
|
||||||
"$G_SRV -u" \
|
"$G_SRV -u" \
|
||||||
"$P_CLI dtls=1 debug_level=2 \
|
"$P_CLI dtls=1 debug_level=2 \
|
||||||
|
@ -8689,6 +8719,7 @@ requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
requires_gnutls
|
requires_gnutls
|
||||||
requires_not_i686
|
requires_not_i686
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: gnutls client, DTLS 1.2" \
|
run_test "DTLS fragmenting: gnutls client, DTLS 1.2" \
|
||||||
"$P_SRV dtls=1 debug_level=2 \
|
"$P_SRV dtls=1 debug_level=2 \
|
||||||
crt_file=data_files/server7_int-ca.crt \
|
crt_file=data_files/server7_int-ca.crt \
|
||||||
|
@ -8718,6 +8749,7 @@ requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: openssl server, DTLS 1.2" \
|
run_test "DTLS fragmenting: openssl server, DTLS 1.2" \
|
||||||
"$O_SRV -dtls1_2 -verify 10" \
|
"$O_SRV -dtls1_2 -verify 10" \
|
||||||
"$P_CLI dtls=1 debug_level=2 \
|
"$P_CLI dtls=1 debug_level=2 \
|
||||||
|
@ -8746,6 +8778,7 @@ requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
|
||||||
requires_config_enabled MBEDTLS_RSA_C
|
requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: openssl client, DTLS 1.2" \
|
run_test "DTLS fragmenting: openssl client, DTLS 1.2" \
|
||||||
"$P_SRV dtls=1 debug_level=2 \
|
"$P_SRV dtls=1 debug_level=2 \
|
||||||
crt_file=data_files/server7_int-ca.crt \
|
crt_file=data_files/server7_int-ca.crt \
|
||||||
|
@ -8778,6 +8811,7 @@ requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
client_needs_more_time 4
|
client_needs_more_time 4
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: 3d, gnutls server, DTLS 1.2" \
|
run_test "DTLS fragmenting: 3d, gnutls server, DTLS 1.2" \
|
||||||
-p "$P_PXY drop=8 delay=8 duplicate=8" \
|
-p "$P_PXY drop=8 delay=8 duplicate=8" \
|
||||||
"$G_NEXT_SRV -u" \
|
"$G_NEXT_SRV -u" \
|
||||||
|
@ -8812,6 +8846,7 @@ requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
client_needs_more_time 4
|
client_needs_more_time 4
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: 3d, gnutls client, DTLS 1.2" \
|
run_test "DTLS fragmenting: 3d, gnutls client, DTLS 1.2" \
|
||||||
-p "$P_PXY drop=8 delay=8 duplicate=8" \
|
-p "$P_PXY drop=8 delay=8 duplicate=8" \
|
||||||
"$P_SRV dtls=1 debug_level=2 \
|
"$P_SRV dtls=1 debug_level=2 \
|
||||||
|
@ -8849,6 +8884,7 @@ requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
client_needs_more_time 4
|
client_needs_more_time 4
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: 3d, openssl server, DTLS 1.2" \
|
run_test "DTLS fragmenting: 3d, openssl server, DTLS 1.2" \
|
||||||
-p "$P_PXY drop=8 delay=8 duplicate=8" \
|
-p "$P_PXY drop=8 delay=8 duplicate=8" \
|
||||||
"$O_SRV -dtls1_2 -verify 10" \
|
"$O_SRV -dtls1_2 -verify 10" \
|
||||||
|
@ -8883,6 +8919,7 @@ requires_config_enabled MBEDTLS_RSA_C
|
||||||
requires_config_enabled MBEDTLS_ECDSA_C
|
requires_config_enabled MBEDTLS_ECDSA_C
|
||||||
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
client_needs_more_time 4
|
client_needs_more_time 4
|
||||||
|
requires_max_content_len 2048
|
||||||
run_test "DTLS fragmenting: 3d, openssl client, DTLS 1.2" \
|
run_test "DTLS fragmenting: 3d, openssl client, DTLS 1.2" \
|
||||||
-p "$P_PXY drop=8 delay=8 duplicate=8" \
|
-p "$P_PXY drop=8 delay=8 duplicate=8" \
|
||||||
"$P_SRV dtls=1 debug_level=2 \
|
"$P_SRV dtls=1 debug_level=2 \
|
||||||
|
@ -9981,6 +10018,7 @@ run_test "export keys functionality" \
|
||||||
requires_config_enabled MBEDTLS_MEMORY_DEBUG
|
requires_config_enabled MBEDTLS_MEMORY_DEBUG
|
||||||
requires_config_enabled MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
requires_config_enabled MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
||||||
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
||||||
|
requires_max_content_len 16384
|
||||||
run_tests_memory_after_hanshake
|
run_tests_memory_after_hanshake
|
||||||
|
|
||||||
# Final report
|
# Final report
|
||||||
|
|
Loading…
Reference in a new issue