Gitiles
Code Review Sign In
gerrit.openfyde.cn / boringssl.googlesource.com / boringssl / 65226257c1c49eac4a739b9d57409b52dfbb5d45 / . / ssl / ssl_test.c
blob: de0f8ed3c6093509525a8ad5d0e9817c84faf514 [file] [log] [blame]
David Benjamin2e521212014-07-16 14:37:51 -0400[diff] [blame]1/* Copyright (c) 2014, Google Inc.
2 *
3 * Permission to use, copy, modify, and/or distribute this software for any
4 * purpose with or without fee is hereby granted, provided that the above
5 * copyright notice and this permission notice appear in all copies.
6 *
7 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
8 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
9 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
10 * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
11 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
12 * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
13 * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */
14
15#include <stdio.h>
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]16#include <string.h>
David Benjamin2e521212014-07-16 14:37:51 -0400[diff] [blame]17
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]18#include <openssl/base64.h>
19#include <openssl/bio.h>
David Benjaminbb0a17c2014-09-20 15:35:39 -0400[diff] [blame]20#include <openssl/err.h>
21#include <openssl/ssl.h>
22
23typedef struct {
24 int id;
25 int in_group_flag;
26} EXPECTED_CIPHER;
27
28typedef struct {
29 /* The rule string to apply. */
30 const char *rule;
31 /* The list of expected ciphers, in order, terminated with -1. */
32 const EXPECTED_CIPHER *expected;
33} CIPHER_TEST;
34
35/* Selecting individual ciphers should work. */
36static const char kRule1[] =
37 "ECDHE-ECDSA-CHACHA20-POLY1305:"
38 "ECDHE-RSA-CHACHA20-POLY1305:"
39 "ECDHE-ECDSA-AES128-GCM-SHA256:"
40 "ECDHE-RSA-AES128-GCM-SHA256";
41
42static const EXPECTED_CIPHER kExpected1[] = {
43 { TLS1_CK_ECDHE_ECDSA_CHACHA20_POLY1305, 0 },
44 { TLS1_CK_ECDHE_RSA_CHACHA20_POLY1305, 0 },
45 { TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, 0 },
46 { TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256, 0 },
47 { -1, -1 },
48};
49
50/* + reorders selected ciphers to the end, keeping their relative
51 * order. */
52static const char kRule2[] =
53 "ECDHE-ECDSA-CHACHA20-POLY1305:"
54 "ECDHE-RSA-CHACHA20-POLY1305:"
55 "ECDHE-ECDSA-AES128-GCM-SHA256:"
56 "ECDHE-RSA-AES128-GCM-SHA256:"
57 "+aRSA";
58
59static const EXPECTED_CIPHER kExpected2[] = {
60 { TLS1_CK_ECDHE_ECDSA_CHACHA20_POLY1305, 0 },
61 { TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, 0 },
62 { TLS1_CK_ECDHE_RSA_CHACHA20_POLY1305, 0 },
63 { TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256, 0 },
64 { -1, -1 },
65};
66
67/* ! banishes ciphers from future selections. */
68static const char kRule3[] =
69 "!aRSA:"
70 "ECDHE-ECDSA-CHACHA20-POLY1305:"
71 "ECDHE-RSA-CHACHA20-POLY1305:"
72 "ECDHE-ECDSA-AES128-GCM-SHA256:"
73 "ECDHE-RSA-AES128-GCM-SHA256";
74
75static const EXPECTED_CIPHER kExpected3[] = {
76 { TLS1_CK_ECDHE_ECDSA_CHACHA20_POLY1305, 0 },
77 { TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, 0 },
78 { -1, -1 },
79};
80
81/* Multiple masks can be ANDed in a single rule. */
82static const char kRule4[] = "kRSA+AESGCM+AES128";
83
84static const EXPECTED_CIPHER kExpected4[] = {
85 { TLS1_CK_RSA_WITH_AES_128_GCM_SHA256, 0 },
86 { -1, -1 },
87};
88
89/* - removes selected ciphers, but preserves their order for future
90 * selections. Select AES_128_GCM, but order the key exchanges RSA,
91 * DHE_RSA, ECDHE_RSA. */
92static const char kRule5[] =
93 "ALL:-kEECDH:-kEDH:-kRSA:-ALL:"
94 "AESGCM+AES128+aRSA";
95
96static const EXPECTED_CIPHER kExpected5[] = {
97 { TLS1_CK_RSA_WITH_AES_128_GCM_SHA256, 0 },
98 { TLS1_CK_DHE_RSA_WITH_AES_128_GCM_SHA256, 0 },
99 { TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256, 0 },
100 { -1, -1 },
101};
102
103/* Unknown selectors are no-ops. */
104static const char kRule6[] =
105 "ECDHE-ECDSA-CHACHA20-POLY1305:"
106 "ECDHE-RSA-CHACHA20-POLY1305:"
107 "ECDHE-ECDSA-AES128-GCM-SHA256:"
108 "ECDHE-RSA-AES128-GCM-SHA256:"
109 "BOGUS1:-BOGUS2:+BOGUS3:!BOGUS4";
110
111static const EXPECTED_CIPHER kExpected6[] = {
112 { TLS1_CK_ECDHE_ECDSA_CHACHA20_POLY1305, 0 },
113 { TLS1_CK_ECDHE_RSA_CHACHA20_POLY1305, 0 },
114 { TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, 0 },
115 { TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256, 0 },
116 { -1, -1 },
117};
118
119/* Square brackets specify equi-preference groups. */
120static const char kRule7[] =
121 "[ECDHE-ECDSA-CHACHA20-POLY1305|ECDHE-ECDSA-AES128-GCM-SHA256]:"
122 "[ECDHE-RSA-CHACHA20-POLY1305]:"
123 "ECDHE-RSA-AES128-GCM-SHA256";
124
125static const EXPECTED_CIPHER kExpected7[] = {
126 { TLS1_CK_ECDHE_ECDSA_CHACHA20_POLY1305, 1 },
127 { TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, 0 },
128 { TLS1_CK_ECDHE_RSA_CHACHA20_POLY1305, 0 },
129 { TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256, 0 },
130 { -1, -1 },
131};
132
133/* @STRENGTH performs a stable strength-sort of the selected
134 * ciphers and only the selected ciphers. */
135static const char kRule8[] =
136 /* To simplify things, banish all but {ECDHE_RSA,RSA} x
137 * {CHACHA20,AES_256_CBC,AES_128_CBC,RC4} x SHA1. */
138 "!kEDH:!AESGCM:!3DES:!SHA256:!MD5:!SHA384:"
139 /* Order some ciphers backwards by strength. */
140 "ALL:-CHACHA20:-AES256:-AES128:-RC4:-ALL:"
141 /* Select ECDHE ones and sort them by strength. Ties should resolve
142 * based on the order above. */
143 "kEECDH:@STRENGTH:-ALL:"
144 /* Now bring back everything uses RSA. ECDHE_RSA should be first,
145 * sorted by strength. Then RSA, backwards by strength. */
146 "aRSA";
147
148static const EXPECTED_CIPHER kExpected8[] = {
149 { TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA, 0 },
150 { TLS1_CK_ECDHE_RSA_CHACHA20_POLY1305, 0 },
151 { TLS1_CK_ECDHE_RSA_WITH_RC4_128_SHA, 0 },
152 { TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA, 0 },
153 { SSL3_CK_RSA_RC4_128_SHA, 0 },
154 { TLS1_CK_RSA_WITH_AES_128_SHA, 0 },
155 { TLS1_CK_RSA_WITH_AES_256_SHA, 0 },
156 { -1, -1 },
157};
158
159static CIPHER_TEST kCipherTests[] = {
160 { kRule1, kExpected1 },
161 { kRule2, kExpected2 },
162 { kRule3, kExpected3 },
163 { kRule4, kExpected4 },
164 { kRule5, kExpected5 },
165 { kRule6, kExpected6 },
166 { kRule7, kExpected7 },
167 { kRule8, kExpected8 },
168 { NULL, NULL },
169};
170
171static const char *kBadRules[] = {
172 /* Invalid brackets. */
173 "[ECDHE-RSA-CHACHA20-POLY1305|ECDHE-RSA-AES128-GCM-SHA256",
174 "RSA]",
175 "[[RSA]]",
176 /* Operators inside brackets */
177 "[+RSA]",
178 /* Unknown directive. */
179 "@BOGUS",
180 /* Empty cipher lists error at SSL_CTX_set_cipher_list. */
181 "",
182 "BOGUS",
183 /* Invalid command. */
184 "?BAR",
David Benjamin37d92462014-09-20 17:54:24 -0400[diff] [blame]185 /* Special operators are not allowed if groups are used. */
186 "[ECDHE-RSA-CHACHA20-POLY1305|ECDHE-RSA-AES128-GCM-SHA256]:+FOO",
187 "[ECDHE-RSA-CHACHA20-POLY1305|ECDHE-RSA-AES128-GCM-SHA256]:!FOO",
188 "[ECDHE-RSA-CHACHA20-POLY1305|ECDHE-RSA-AES128-GCM-SHA256]:-FOO",
189 "[ECDHE-RSA-CHACHA20-POLY1305|ECDHE-RSA-AES128-GCM-SHA256]:@STRENGTH",
David Benjaminbb0a17c2014-09-20 15:35:39 -0400[diff] [blame]190 NULL,
191};
192
193static void print_cipher_preference_list(
194 struct ssl_cipher_preference_list_st *list) {
195 size_t i;
196 int in_group = 0;
197 for (i = 0; i < sk_SSL_CIPHER_num(list->ciphers); i++) {
198 const SSL_CIPHER *cipher = sk_SSL_CIPHER_value(list->ciphers, i);
199 if (!in_group && list->in_group_flags[i]) {
200 fprintf(stderr, "\t[\n");
201 in_group = 1;
202 }
203 fprintf(stderr, "\t");
204 if (in_group) {
205 fprintf(stderr, " ");
206 }
207 fprintf(stderr, "%s\n", SSL_CIPHER_get_name(cipher));
208 if (in_group && !list->in_group_flags[i]) {
209 fprintf(stderr, "\t]\n");
210 in_group = 0;
211 }
212 }
213}
214
215static int test_cipher_rule(CIPHER_TEST *t) {
216 int ret = 0;
David Benjamin65226252015-02-05 16:49:47 -0500[diff] [blame^]217 SSL_CTX *ctx = SSL_CTX_new(TLS_method());
David Benjaminbb0a17c2014-09-20 15:35:39 -0400[diff] [blame]218 size_t i;
219
David Benjamin65226252015-02-05 16:49:47 -0500[diff] [blame^]220 if (ctx == NULL) {
221 goto done;
222 }
223
David Benjaminbb0a17c2014-09-20 15:35:39 -0400[diff] [blame]224 if (!SSL_CTX_set_cipher_list(ctx, t->rule)) {
225 fprintf(stderr, "Error testing cipher rule '%s'\n", t->rule);
226 BIO_print_errors_fp(stderr);
227 goto done;
228 }
229
230 /* Compare the two lists. */
231 for (i = 0; i < sk_SSL_CIPHER_num(ctx->cipher_list->ciphers); i++) {
232 const SSL_CIPHER *cipher =
233 sk_SSL_CIPHER_value(ctx->cipher_list->ciphers, i);
234 if (t->expected[i].id != SSL_CIPHER_get_id(cipher) ||
235 t->expected[i].in_group_flag != ctx->cipher_list->in_group_flags[i]) {
236 fprintf(stderr, "Error: cipher rule '%s' evaluted to:\n", t->rule);
237 print_cipher_preference_list(ctx->cipher_list);
238 goto done;
239 }
240 }
241
242 if (t->expected[i].id != -1) {
243 fprintf(stderr, "Error: cipher rule '%s' evaluted to:\n", t->rule);
244 print_cipher_preference_list(ctx->cipher_list);
245 goto done;
246 }
247
248 ret = 1;
249done:
David Benjamin65226252015-02-05 16:49:47 -0500[diff] [blame^]250 if (ctx != NULL) {
251 SSL_CTX_free(ctx);
252 }
David Benjaminbb0a17c2014-09-20 15:35:39 -0400[diff] [blame]253 return ret;
254}
255
256static int test_cipher_rules(void) {
257 size_t i;
258 for (i = 0; kCipherTests[i].rule != NULL; i++) {
259 if (!test_cipher_rule(&kCipherTests[i])) {
260 return 0;
261 }
262 }
263
264 for (i = 0; kBadRules[i] != NULL; i++) {
265 SSL_CTX *ctx = SSL_CTX_new(SSLv23_server_method());
David Benjamin65226252015-02-05 16:49:47 -0500[diff] [blame^]266 if (ctx == NULL) {
267 return 0;
268 }
David Benjaminbb0a17c2014-09-20 15:35:39 -0400[diff] [blame]269 if (SSL_CTX_set_cipher_list(ctx, kBadRules[i])) {
270 fprintf(stderr, "Cipher rule '%s' unexpectedly succeeded\n", kBadRules[i]);
David Benjamin65226252015-02-05 16:49:47 -0500[diff] [blame^]271 SSL_CTX_free(ctx);
David Benjaminbb0a17c2014-09-20 15:35:39 -0400[diff] [blame]272 return 0;
273 }
274 ERR_clear_error();
275 SSL_CTX_free(ctx);
276 }
277
278 return 1;
279}
David Benjamin2e521212014-07-16 14:37:51 -0400[diff] [blame]280
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]281/* kOpenSSLSession is a serialized SSL_SESSION generated from openssl
282 * s_client -sess_out. */
283static const char kOpenSSLSession[] =
David Benjamin688d8df2014-11-02 23:06:42 -0500[diff] [blame]284 "MIIFpQIBAQICAwMEAsAvBCAG5Q1ndq4Yfmbeo1zwLkNRKmCXGdNgWvGT3cskV0yQ"
285 "kAQwJlrlzkAWBOWiLj/jJ76D7l+UXoizP2KI2C7I2FccqMmIfFmmkUy32nIJ0mZH"
286 "IWoJoQYCBFRDO46iBAICASyjggR6MIIEdjCCA16gAwIBAgIIK9dUvsPWSlUwDQYJ"
287 "KoZIhvcNAQEFBQAwSTELMAkGA1UEBhMCVVMxEzARBgNVBAoTCkdvb2dsZSBJbmMx"
288 "JTAjBgNVBAMTHEdvb2dsZSBJbnRlcm5ldCBBdXRob3JpdHkgRzIwHhcNMTQxMDA4"
289 "MTIwNzU3WhcNMTUwMTA2MDAwMDAwWjBoMQswCQYDVQQGEwJVUzETMBEGA1UECAwK"
290 "Q2FsaWZvcm5pYTEWMBQGA1UEBwwNTW91bnRhaW4gVmlldzETMBEGA1UECgwKR29v"
291 "Z2xlIEluYzEXMBUGA1UEAwwOd3d3Lmdvb2dsZS5jb20wggEiMA0GCSqGSIb3DQEB"
292 "AQUAA4IBDwAwggEKAoIBAQCcKeLrplAC+Lofy8t/wDwtB6eu72CVp0cJ4V3lknN6"
293 "huH9ct6FFk70oRIh/VBNBBz900jYy+7111Jm1b8iqOTQ9aT5C7SEhNcQFJvqzH3e"
294 "MPkb6ZSWGm1yGF7MCQTGQXF20Sk/O16FSjAynU/b3oJmOctcycWYkY0ytS/k3LBu"
295 "Id45PJaoMqjB0WypqvNeJHC3q5JjCB4RP7Nfx5jjHSrCMhw8lUMW4EaDxjaR9KDh"
296 "PLgjsk+LDIySRSRDaCQGhEOWLJZVLzLo4N6/UlctCHEllpBUSvEOyFga52qroGjg"
297 "rf3WOQ925MFwzd6AK+Ich0gDRg8sQfdLH5OuP1cfLfU1AgMBAAGjggFBMIIBPTAd"
298 "BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwGQYDVR0RBBIwEIIOd3d3Lmdv"
299 "b2dsZS5jb20waAYIKwYBBQUHAQEEXDBaMCsGCCsGAQUFBzAChh9odHRwOi8vcGtp"
300 "Lmdvb2dsZS5jb20vR0lBRzIuY3J0MCsGCCsGAQUFBzABhh9odHRwOi8vY2xpZW50"
301 "czEuZ29vZ2xlLmNvbS9vY3NwMB0GA1UdDgQWBBQ7a+CcxsZByOpc+xpYFcIbnUMZ"
302 "hTAMBgNVHRMBAf8EAjAAMB8GA1UdIwQYMBaAFErdBhYbvPZotXb1gba7Yhq6WoEv"
303 "MBcGA1UdIAQQMA4wDAYKKwYBBAHWeQIFATAwBgNVHR8EKTAnMCWgI6Ahhh9odHRw"
304 "Oi8vcGtpLmdvb2dsZS5jb20vR0lBRzIuY3JsMA0GCSqGSIb3DQEBBQUAA4IBAQCa"
305 "OXCBdoqUy5bxyq+Wrh1zsyyCFim1PH5VU2+yvDSWrgDY8ibRGJmfff3r4Lud5kal"
306 "dKs9k8YlKD3ITG7P0YT/Rk8hLgfEuLcq5cc0xqmE42xJ+Eo2uzq9rYorc5emMCxf"
307 "5L0TJOXZqHQpOEcuptZQ4OjdYMfSxk5UzueUhA3ogZKRcRkdB3WeWRp+nYRhx4St"
308 "o2rt2A0MKmY9165GHUqMK9YaaXHDXqBu7Sefr1uSoAP9gyIJKeihMivsGqJ1TD6Z"
309 "cc6LMe+dN2P8cZEQHtD1y296ul4Mivqk3jatUVL8/hCwgch9A8O4PGZq9WqBfEWm"
310 "IyHh1dPtbg1lOXdYCWtjpAIEAKUDAgEUqQUCAwGJwKqBpwSBpBwUQvoeOk0Kg36S"
311 "YTcLEkXqKwOBfF9vE4KX0NxeLwjcDTpsuh3qXEaZ992r1N38VDcyS6P7I6HBYN9B"
312 "sNHM362zZnY27GpTw+Kwd751CLoXFPoaMOe57dbBpXoro6Pd3BTbf/Tzr88K06yE"
313 "OTDKPNj3+inbMaVigtK4PLyPq+Topyzvx9USFgRvyuoxn0Hgb+R0A3j6SLRuyOdA"
314 "i4gv7Y5oliyn";
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]315
316/* kCustomSession is a custom serialized SSL_SESSION generated by
317 * filling in missing fields from |kOpenSSLSession|. This includes
318 * providing |peer_sha256|, so |peer| is not serialized. */
319static const char kCustomSession[] =
David Benjamin688d8df2014-11-02 23:06:42 -0500[diff] [blame]320 "MIIBdgIBAQICAwMEAsAvBCAG5Q1ndq4Yfmbeo1zwLkNRKmCXGdNgWvGT3cskV0yQ"
321 "kAQwJlrlzkAWBOWiLj/jJ76D7l+UXoizP2KI2C7I2FccqMmIfFmmkUy32nIJ0mZH"
322 "IWoJoQYCBFRDO46iBAICASykAwQBAqUDAgEUphAEDnd3dy5nb29nbGUuY29tqAcE"
323 "BXdvcmxkqQUCAwGJwKqBpwSBpBwUQvoeOk0Kg36SYTcLEkXqKwOBfF9vE4KX0Nxe"
324 "LwjcDTpsuh3qXEaZ992r1N38VDcyS6P7I6HBYN9BsNHM362zZnY27GpTw+Kwd751"
325 "CLoXFPoaMOe57dbBpXoro6Pd3BTbf/Tzr88K06yEOTDKPNj3+inbMaVigtK4PLyP"
326 "q+Topyzvx9USFgRvyuoxn0Hgb+R0A3j6SLRuyOdAi4gv7Y5oliynrSIEIAYGBgYG"
327 "BgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGrgMEAQevAwQBBLADBAEF";
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]328
329static int decode_base64(uint8_t **out, size_t *out_len, const char *in) {
330 size_t len;
331
332 if (!EVP_DecodedLength(&len, strlen(in))) {
333 fprintf(stderr, "EVP_DecodedLength failed\n");
334 return 0;
335 }
336
337 *out = OPENSSL_malloc(len);
338 if (*out == NULL) {
339 fprintf(stderr, "malloc failed\n");
340 return 0;
341 }
342
343 if (!EVP_DecodeBase64(*out, out_len, len, (const uint8_t *)in,
344 strlen(in))) {
345 fprintf(stderr, "EVP_DecodeBase64 failed\n");
346 OPENSSL_free(*out);
347 *out = NULL;
348 return 0;
349 }
350 return 1;
351}
352
David Benjamin7001a7f2014-10-26 00:03:08 -0400[diff] [blame]353static int test_ssl_session_asn1(const char *input_b64) {
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]354 int ret = 0, len;
David Benjamin3cac4502014-10-21 01:46:30 -0400[diff] [blame]355 size_t input_len, encoded_len;
David Benjamin7001a7f2014-10-26 00:03:08 -0400[diff] [blame]356 uint8_t *input = NULL, *encoded = NULL;
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]357 const uint8_t *cptr;
358 uint8_t *ptr;
359 SSL_SESSION *session = NULL;
360
361 /* Decode the input. */
David Benjamin7001a7f2014-10-26 00:03:08 -0400[diff] [blame]362 if (!decode_base64(&input, &input_len, input_b64)) {
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]363 goto done;
364 }
365
366 /* Verify the SSL_SESSION decodes. */
367 cptr = input;
368 session = d2i_SSL_SESSION(NULL, &cptr, input_len);
369 if (session == NULL || cptr != input + input_len) {
370 fprintf(stderr, "d2i_SSL_SESSION failed\n");
371 goto done;
372 }
373
374 /* Verify the SSL_SESSION encoding round-trips. */
David Benjamin3cac4502014-10-21 01:46:30 -0400[diff] [blame]375 if (!SSL_SESSION_to_bytes(session, &encoded, &encoded_len)) {
376 fprintf(stderr, "SSL_SESSION_to_bytes failed\n");
377 goto done;
378 }
379 if (encoded_len != input_len ||
380 memcmp(input, encoded, input_len) != 0) {
381 fprintf(stderr, "SSL_SESSION_to_bytes did not round-trip\n");
382 goto done;
383 }
384 OPENSSL_free(encoded);
385 encoded = NULL;
386
387 /* Verify the SSL_SESSION encoding round-trips via the legacy API. */
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]388 len = i2d_SSL_SESSION(session, NULL);
David Benjamin7001a7f2014-10-26 00:03:08 -0400[diff] [blame]389 if (len < 0 || (size_t)len != input_len) {
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]390 fprintf(stderr, "i2d_SSL_SESSION(NULL) returned invalid length\n");
391 goto done;
392 }
393
David Benjamin7001a7f2014-10-26 00:03:08 -0400[diff] [blame]394 encoded = OPENSSL_malloc(input_len);
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]395 if (encoded == NULL) {
396 fprintf(stderr, "malloc failed\n");
397 goto done;
398 }
399 ptr = encoded;
400 len = i2d_SSL_SESSION(session, &ptr);
David Benjamin7001a7f2014-10-26 00:03:08 -0400[diff] [blame]401 if (len < 0 || (size_t)len != input_len) {
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]402 fprintf(stderr, "i2d_SSL_SESSION returned invalid length\n");
403 goto done;
404 }
David Benjamin7001a7f2014-10-26 00:03:08 -0400[diff] [blame]405 if (ptr != encoded + input_len) {
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]406 fprintf(stderr, "i2d_SSL_SESSION did not advance ptr correctly\n");
407 goto done;
408 }
David Benjamin7001a7f2014-10-26 00:03:08 -0400[diff] [blame]409 if (memcmp(input, encoded, input_len) != 0) {
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]410 fprintf(stderr, "i2d_SSL_SESSION did not round-trip\n");
411 goto done;
412 }
413
414 ret = 1;
415
416 done:
417 if (!ret) {
418 BIO_print_errors_fp(stderr);
419 }
420
421 if (session) {
422 SSL_SESSION_free(session);
423 }
424 if (input) {
425 OPENSSL_free(input);
426 }
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]427 if (encoded) {
428 OPENSSL_free(encoded);
429 }
430 return ret;
431}
432
David Benjamin65226252015-02-05 16:49:47 -0500[diff] [blame^]433static int test_default_version(uint16_t version,
434 const SSL_METHOD *(*method)(void)) {
David Benjamin82c9e902014-12-12 15:55:27 -0500[diff] [blame]435 SSL_CTX *ctx;
436 int ret;
437
438 ctx = SSL_CTX_new(method());
439 if (ctx == NULL) {
440 return 0;
441 }
442
443 ret = ctx->min_version == version && ctx->max_version == version;
444 SSL_CTX_free(ctx);
445 return ret;
446}
447
David Benjamin65226252015-02-05 16:49:47 -0500[diff] [blame^]448static char *cipher_get_rfc_name(const char *name) {
449 SSL_CTX *ctx = SSL_CTX_new(TLS_method());
450 char *ret = NULL;
451
452 if (ctx == NULL) {
453 goto done;
454 }
455
456 if (!SSL_CTX_set_cipher_list(ctx, name) ||
457 sk_SSL_CIPHER_num(ctx->cipher_list->ciphers) != 1) {
458 fprintf(stderr, "Error finding cipher '%s'\n", name);
459 BIO_print_errors_fp(stderr);
460 goto done;
461 }
462
463 const SSL_CIPHER *cipher = sk_SSL_CIPHER_value(ctx->cipher_list->ciphers, 0);
464 ret = SSL_CIPHER_get_rfc_name(cipher);
465
466done:
467 if (ctx != NULL) {
468 SSL_CTX_free(ctx);
469 }
470 return ret;
471}
472
473typedef struct {
474 const char *name;
475 const char *rfc_name;
476} CIPHER_RFC_NAME_TEST;
477
478static const CIPHER_RFC_NAME_TEST kCipherRFCNameTests[] = {
479 { "DES-CBC3-SHA", "TLS_RSA_WITH_3DES_EDE_CBC_SHA" },
480 { "RC4-MD5", "TLS_RSA_WITH_RC4_MD5" },
481 { "AES128-SHA", "TLS_RSA_WITH_AES_128_CBC_SHA" },
482 { "ADH-AES128-SHA", "TLS_DH_anon_WITH_AES_128_CBC_SHA" },
483 { "DHE-RSA-AES256-SHA", "TLS_DHE_RSA_WITH_AES_256_CBC_SHA" },
484 { "DHE-RSA-AES256-SHA256", "TLS_DHE_RSA_WITH_AES_256_CBC_SHA256" },
485 { "AECDH-AES128-SHA", "TLS_ECDH_anon_WITH_AES_128_CBC_SHA" },
486 { "ECDHE-RSA-AES128-SHA256", "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256" },
487 { "ECDHE-RSA-AES256-SHA384", "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384" },
488 { "ECDHE-RSA-AES128-GCM-SHA256", "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" },
489 { "ECDHE-ECDSA-AES128-GCM-SHA256", "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" },
490 { "ECDHE-ECDSA-AES256-GCM-SHA384", "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" },
491 { "PSK-RC4-SHA", "TLS_PSK_WITH_RC4_SHA" },
492 /* These names are non-standard: */
493 { "ECDHE-RSA-CHACHA20-POLY1305", "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256" },
494 { "ECDHE-ECDSA-CHACHA20-POLY1305", "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256" },
495 { "ECDHE-PSK-WITH-AES-128-GCM-SHA256", "TLS_ECDHE_PSK_WITH_AES_128_GCM_SHA256" },
496};
497
498static int test_cipher_get_rfc_name() {
499 size_t i;
500
501 for (i = 0; i < sizeof(kCipherRFCNameTests) / sizeof(kCipherRFCNameTests[0]);
502 i++) {
503 const CIPHER_RFC_NAME_TEST *test = &kCipherRFCNameTests[i];
504 char *rfc_name = cipher_get_rfc_name(test->name);
505 if (rfc_name == NULL) {
506 fprintf(stderr, "cipher_get_rfc_name failed on '%s'\n", test->name);
507 return 0;
508 }
509 if (strcmp(rfc_name, test->rfc_name) != 0) {
510 fprintf(stderr, "SSL_CIPHER_get_rfc_name: got '%s', wanted '%s'\n",
511 rfc_name, test->rfc_name);
512 OPENSSL_free(rfc_name);
513 return 0;
514 }
515 OPENSSL_free(rfc_name);
516 }
517 return 1;
518}
519
David Benjaminc44d2f42014-08-20 16:24:00 -0400[diff] [blame]520int main(void) {
David Benjaminbb0a17c2014-09-20 15:35:39 -0400[diff] [blame]521 SSL_library_init();
522
David Benjamin751e8892014-10-19 00:59:36 -0400[diff] [blame]523 if (!test_cipher_rules() ||
David Benjamin7001a7f2014-10-26 00:03:08 -0400[diff] [blame]524 !test_ssl_session_asn1(kOpenSSLSession) ||
David Benjamin82c9e902014-12-12 15:55:27 -0500[diff] [blame]525 !test_ssl_session_asn1(kCustomSession) ||
526 !test_default_version(0, &TLS_method) ||
527 !test_default_version(SSL3_VERSION, &SSLv3_method) ||
528 !test_default_version(TLS1_VERSION, &TLSv1_method) ||
529 !test_default_version(TLS1_1_VERSION, &TLSv1_1_method) ||
530 !test_default_version(TLS1_2_VERSION, &TLSv1_2_method) ||
531 !test_default_version(0, &DTLS_method) ||
532 !test_default_version(DTLS1_VERSION, &DTLSv1_method) ||
David Benjamin65226252015-02-05 16:49:47 -0500[diff] [blame^]533 !test_default_version(DTLS1_2_VERSION, &DTLSv1_2_method) ||
534 !test_cipher_get_rfc_name()) {
David Benjaminbb0a17c2014-09-20 15:35:39 -0400[diff] [blame]535 return 1;
536 }
537
David Benjamin2e521212014-07-16 14:37:51 -0400[diff] [blame]538 printf("PASS\n");
539 return 0;
540}