4 $ if f$getsyi("cpu") .ge. 128 then -
5 __arch = f$edit( f$getsyi( "ARCH_NAME"), "UPCASE")
6 $ if __arch .eqs. "" then __arch = "UNK"
8 $ if (p4 .eqs. "64") then __arch = __arch+ "_64"
10 $ texe_dir = "sys$disk:[-.''__arch'.exe.test]"
11 $ exe_dir = "sys$disk:[-.''__arch'.exe.apps]"
15 $ key="[-.apps]server.pem"
21 $ cert="[-.apps]server.pem"
25 $ ssltest = "mcr ''texe_dir'ssltest -key ''key'"+ -
26 " -cert ''cert' -c_key ''key' -c_cert ''cert'"
29 $ define/user sys$output testssl-x509-output.
30 $ define/user sys$error nla0:
31 $ mcr 'exe_dir'openssl x509 -in 'cert' -text -noout
32 $ define/user sys$error nla0:
33 $ search/output=nla0: testssl-x509-output. "DSA Public Key"/exact
40 $ delete testssl-x509-output.;*
44 $ copy/concatenate [-.certs]*.pem certs.tmp
45 $ CA = """-CAfile"" certs.tmp"
47 $ CA = """-CAfile"" "+p3
50 $!###########################################################################
52 $ write sys$output "test sslv3"
54 $ if $severity .ne. 1 then goto exit3
56 $ write sys$output "test sslv3 with server authentication"
57 $ 'ssltest' -ssl3 -server_auth 'CA'
58 $ if $severity .ne. 1 then goto exit3
60 $ write sys$output "test sslv3 with client authentication"
61 $ 'ssltest' -ssl3 -client_auth 'CA'
62 $ if $severity .ne. 1 then goto exit3
64 $ write sys$output "test sslv3 with both client and server authentication"
65 $ 'ssltest' -ssl3 -server_auth -client_auth 'CA'
66 $ if $severity .ne. 1 then goto exit3
68 $ write sys$output "test sslv2/sslv3"
70 $ if $severity .ne. 1 then goto exit3
72 $ write sys$output "test sslv2/sslv3 with server authentication"
73 $ 'ssltest' -server_auth 'CA'
74 $ if $severity .ne. 1 then goto exit3
76 $ write sys$output "test sslv2/sslv3 with client authentication"
77 $ 'ssltest' -client_auth 'CA'
78 $ if $severity .ne. 1 then goto exit3
80 $ write sys$output "test sslv2/sslv3 with both client and server authentication"
81 $ 'ssltest' -server_auth -client_auth 'CA'
82 $ if $severity .ne. 1 then goto exit3
84 $ write sys$output "test sslv3 via BIO pair"
85 $ 'ssltest' -bio_pair -ssl3
86 $ if $severity .ne. 1 then goto exit3
88 $ write sys$output "test sslv3 with server authentication via BIO pair"
89 $ 'ssltest' -bio_pair -ssl3 -server_auth 'CA'
90 $ if $severity .ne. 1 then goto exit3
92 $ write sys$output "test sslv3 with client authentication via BIO pair"
93 $ 'ssltest' -bio_pair -ssl3 -client_auth 'CA'
94 $ if $severity .ne. 1 then goto exit3
96 $ write sys$output "test sslv3 with both client and server authentication via BIO pair"
97 $ 'ssltest' -bio_pair -ssl3 -server_auth -client_auth 'CA'
98 $ if $severity .ne. 1 then goto exit3
100 $ write sys$output "test sslv2/sslv3 via BIO pair"
102 $ if $severity .ne. 1 then goto exit3
106 $ write sys$output "test sslv2/sslv3 w/o DHE via BIO pair"
107 $ 'ssltest' -bio_pair -no_dhe
108 $ if $severity .ne. 1 then goto exit3
111 $ write sys$output "test sslv2/sslv3 with 1024 bit DHE via BIO pair"
112 $ 'ssltest' -bio_pair -dhe1024dsa -v
113 $ if $severity .ne. 1 then goto exit3
115 $ write sys$output "test sslv2/sslv3 with server authentication"
116 $ 'ssltest' -bio_pair -server_auth 'CA'
117 $ if $severity .ne. 1 then goto exit3
119 $ write sys$output "test sslv2/sslv3 with client authentication via BIO pair"
120 $ 'ssltest' -bio_pair -client_auth 'CA'
121 $ if $severity .ne. 1 then goto exit3
123 $ write sys$output "test sslv2/sslv3 with both client and server authentication via BIO pair"
124 $ 'ssltest' -bio_pair -server_auth -client_auth 'CA'
125 $ if $severity .ne. 1 then goto exit3
127 $!###########################################################################
129 $ define/user sys$output nla0:
130 $ mcr 'exe_dir'openssl no-rsa
132 $ define/user sys$output nla0:
133 $ mcr 'exe_dir'openssl no-dh
138 $ write sys$output "skipping anonymous DH tests"
140 $ write sys$output "test tls1 with 1024bit anonymous DH, multiple handshakes"
141 $ 'ssltest' -v -bio_pair -tls1 -cipher "ADH" -dhe1024dsa -num 10 -f -time
142 $ if $severity .ne. 1 then goto exit3
147 $ write sys$output "skipping RSA tests"
149 $ write sys$output "test tls1 with 1024bit RSA, no DHE, multiple handshakes"
150 $ mcr 'texe_dir'ssltest -v -bio_pair -tls1 -cert [-.apps]server2.pem -no_dhe -num 10 -f -time
151 $ if $severity .ne. 1 then goto exit3
155 $ write sys$output "skipping RSA+DHE tests"
157 $ write sys$output "test tls1 with 1024bit RSA, 1024bit DHE, multiple handshakes"
158 $ mcr 'texe_dir'ssltest -v -bio_pair -tls1 -cert [-.apps]server2.pem -dhe1024dsa -num 10 -f -time
159 $ if $severity .ne. 1 then goto exit3
168 $ if p3 .eqs. "" then delete certs.tmp;*