2 # Copyright 2016-2016 The OpenSSL Project Authors. All Rights Reserved.
4 # Licensed under the OpenSSL license (the "License"). You may not use
5 # this file except in compliance with the License. You can obtain a copy
6 # in the file LICENSE in the source distribution or at
7 # https://www.openssl.org/source/license.html
16 use OpenSSL::Test::Utils;
20 name => "renegotiate-client-no-resume",
22 "Options" => "NoResumptionOnRenegotiation",
23 "MaxProtocol" => "TLSv1.2"
28 "HandshakeMode" => "RenegotiateClient",
29 "ResumptionExpected" => "No",
30 "ExpectedResult" => "Success"
34 name => "renegotiate-client-resume",
36 "MaxProtocol" => "TLSv1.2"
41 "HandshakeMode" => "RenegotiateClient",
42 "ResumptionExpected" => "Yes",
43 "ExpectedResult" => "Success"
47 name => "renegotiate-server-no-resume",
49 "Options" => "NoResumptionOnRenegotiation",
50 "MaxProtocol" => "TLSv1.2"
55 "HandshakeMode" => "RenegotiateServer",
56 "ResumptionExpected" => "No",
57 "ExpectedResult" => "Success"
61 name => "renegotiate-server-resume",
63 "MaxProtocol" => "TLSv1.2"
68 "HandshakeMode" => "RenegotiateServer",
69 "ResumptionExpected" => "Yes",
70 "ExpectedResult" => "Success"
74 name => "renegotiate-client-auth-require",
76 "Options" => "NoResumptionOnRenegotiation",
77 "MaxProtocol" => "TLSv1.2",
78 "VerifyCAFile" => test_pem("root-cert.pem"),
79 "VerifyMode" => "Require",
82 "Certificate" => test_pem("ee-client-chain.pem"),
83 "PrivateKey" => test_pem("ee-key.pem"),
87 "HandshakeMode" => "RenegotiateServer",
88 "ResumptionExpected" => "No",
89 "ExpectedResult" => "Success"
93 name => "renegotiate-client-auth-once",
95 "Options" => "NoResumptionOnRenegotiation",
96 "MaxProtocol" => "TLSv1.2",
97 "VerifyCAFile" => test_pem("root-cert.pem"),
98 "VerifyMode" => "Once",
101 "Certificate" => test_pem("ee-client-chain.pem"),
102 "PrivateKey" => test_pem("ee-key.pem"),
106 "HandshakeMode" => "RenegotiateServer",
107 "ResumptionExpected" => "No",
108 "ExpectedResult" => "Success"
112 our @tests_tls1_2 = (
114 name => "renegotiate-aead-to-non-aead",
116 "Options" => "NoResumptionOnRenegotiation",
119 "CipherString" => "AES128-GCM-SHA256",
120 "MaxProtocol" => "TLSv1.2",
122 "RenegotiateCiphers" => "AES128-SHA"
127 "HandshakeMode" => "RenegotiateClient",
128 "ResumptionExpected" => "No",
129 "ExpectedResult" => "Success"
133 name => "renegotiate-non-aead-to-aead",
135 "Options" => "NoResumptionOnRenegotiation",
138 "CipherString" => "AES128-SHA",
139 "MaxProtocol" => "TLSv1.2",
141 "RenegotiateCiphers" => "AES128-GCM-SHA256"
146 "HandshakeMode" => "RenegotiateClient",
147 "ResumptionExpected" => "No",
148 "ExpectedResult" => "Success"
152 name => "renegotiate-non-aead-to-non-aead",
154 "Options" => "NoResumptionOnRenegotiation",
157 "CipherString" => "AES128-SHA",
158 "MaxProtocol" => "TLSv1.2",
160 "RenegotiateCiphers" => "AES256-SHA"
165 "HandshakeMode" => "RenegotiateClient",
166 "ResumptionExpected" => "No",
167 "ExpectedResult" => "Success"
171 name => "renegotiate-aead-to-aead",
173 "Options" => "NoResumptionOnRenegotiation",
176 "CipherString" => "AES128-GCM-SHA256",
177 "MaxProtocol" => "TLSv1.2",
179 "RenegotiateCiphers" => "AES256-GCM-SHA384"
184 "HandshakeMode" => "RenegotiateClient",
185 "ResumptionExpected" => "No",
186 "ExpectedResult" => "Success"
190 name => "no-renegotiation-server-by-client",
192 "Options" => "NoRenegotiation",
193 "MaxProtocol" => "TLSv1.2"
198 "HandshakeMode" => "RenegotiateClient",
199 "ResumptionExpected" => "No",
200 "ExpectedResult" => "ClientFail"
204 name => "no-renegotiation-server-by-server",
206 "Options" => "NoRenegotiation",
207 "MaxProtocol" => "TLSv1.2"
212 "HandshakeMode" => "RenegotiateServer",
213 "ResumptionExpected" => "No",
214 "ExpectedResult" => "ServerFail"
218 name => "no-renegotiation-client-by-server",
220 "MaxProtocol" => "TLSv1.2"
223 "Options" => "NoRenegotiation",
227 "HandshakeMode" => "RenegotiateServer",
228 "ResumptionExpected" => "No",
229 "ExpectedResult" => "ServerFail"
233 name => "no-renegotiation-client-by-client",
235 "MaxProtocol" => "TLSv1.2"
238 "Options" => "NoRenegotiation",
242 "HandshakeMode" => "RenegotiateClient",
243 "ResumptionExpected" => "No",
244 "ExpectedResult" => "ClientFail"
249 push @tests, @tests_tls1_2 unless disabled("tls1_2");