| 1 | # -*- mode: perl; -*-
|
|---|
| 2 | # Copyright 2016-2021 The OpenSSL Project Authors. All Rights Reserved.
|
|---|
| 3 | #
|
|---|
| 4 | # Licensed under the Apache License 2.0 (the "License"). You may not use
|
|---|
| 5 | # this file except in compliance with the License. You can obtain a copy
|
|---|
| 6 | # in the file LICENSE in the source distribution or at
|
|---|
| 7 | # https://www.openssl.org/source/license.html
|
|---|
| 8 |
|
|---|
| 9 |
|
|---|
| 10 | ## Test DTLS CertStatus messages
|
|---|
| 11 |
|
|---|
| 12 | use strict;
|
|---|
| 13 | use warnings;
|
|---|
| 14 |
|
|---|
| 15 | package ssltests;
|
|---|
| 16 | use OpenSSL::Test::Utils;
|
|---|
| 17 |
|
|---|
| 18 | our $fips_mode;
|
|---|
| 19 |
|
|---|
| 20 | our @tests = ();
|
|---|
| 21 |
|
|---|
| 22 | our @tests_standard = (
|
|---|
| 23 | {
|
|---|
| 24 | name => "certstatus-good",
|
|---|
| 25 | server => {
|
|---|
| 26 | "CipherString" => "DEFAULT:\@SECLEVEL=0",
|
|---|
| 27 | extra => {
|
|---|
| 28 | "CertStatus" => "GoodResponse"
|
|---|
| 29 | },
|
|---|
| 30 | },
|
|---|
| 31 | client => {
|
|---|
| 32 | "CipherString" => "DEFAULT:\@SECLEVEL=0",
|
|---|
| 33 | },
|
|---|
| 34 | test => {
|
|---|
| 35 | "Method" => "DTLS",
|
|---|
| 36 | "ExpectedResult" => "Success"
|
|---|
| 37 | }
|
|---|
| 38 | },
|
|---|
| 39 | {
|
|---|
| 40 | name => "certstatus-bad",
|
|---|
| 41 | server => {
|
|---|
| 42 | "CipherString" => "DEFAULT:\@SECLEVEL=0",
|
|---|
| 43 | extra => {
|
|---|
| 44 | "CertStatus" => "BadResponse",
|
|---|
| 45 | },
|
|---|
| 46 | },
|
|---|
| 47 | client => {
|
|---|
| 48 | "CipherString" => "DEFAULT:\@SECLEVEL=0",
|
|---|
| 49 | },
|
|---|
| 50 | test => {
|
|---|
| 51 | "Method" => "DTLS",
|
|---|
| 52 | "ExpectedResult" => "ClientFail"
|
|---|
| 53 | }
|
|---|
| 54 | }
|
|---|
| 55 | );
|
|---|
| 56 |
|
|---|
| 57 | our @tests_sctp = (
|
|---|
| 58 | {
|
|---|
| 59 | name => "certstatus-good",
|
|---|
| 60 | server => {
|
|---|
| 61 | "CipherString" => "DEFAULT:\@SECLEVEL=0",
|
|---|
| 62 | extra => {
|
|---|
| 63 | "CertStatus" => "GoodResponse",
|
|---|
| 64 | },
|
|---|
| 65 | },
|
|---|
| 66 | client => {
|
|---|
| 67 | "CipherString" => "DEFAULT:\@SECLEVEL=0",
|
|---|
| 68 | },
|
|---|
| 69 | test => {
|
|---|
| 70 | "Method" => "DTLS",
|
|---|
| 71 | "UseSCTP" => "Yes",
|
|---|
| 72 | "ExpectedResult" => "Success"
|
|---|
| 73 | }
|
|---|
| 74 | },
|
|---|
| 75 | {
|
|---|
| 76 | name => "certstatus-bad",
|
|---|
| 77 | server => {
|
|---|
| 78 | "CipherString" => "DEFAULT:\@SECLEVEL=0",
|
|---|
| 79 | extra => {
|
|---|
| 80 | "CertStatus" => "BadResponse",
|
|---|
| 81 | },
|
|---|
| 82 | },
|
|---|
| 83 | client => {
|
|---|
| 84 | "CipherString" => "DEFAULT:\@SECLEVEL=0",
|
|---|
| 85 | },
|
|---|
| 86 | test => {
|
|---|
| 87 | "Method" => "DTLS",
|
|---|
| 88 | "UseSCTP" => "Yes",
|
|---|
| 89 | "ExpectedResult" => "ClientFail"
|
|---|
| 90 | }
|
|---|
| 91 | },
|
|---|
| 92 | );
|
|---|
| 93 |
|
|---|
| 94 | if (!$fips_mode || !disabled("dtls1_2")) {
|
|---|
| 95 | push @tests, @tests_standard;
|
|---|
| 96 | push @tests, @tests_sctp unless disabled("sctp") || disabled("sock");
|
|---|
| 97 | }
|
|---|
