4 $ if f$getsyi("cpu") .ge. 128 then -
5 __arch = f$edit( f$getsyi( "ARCH_NAME"), "UPCASE")
6 $ if __arch .eqs. "" then __arch := UNK
7 $ texe_dir := sys$disk:[-.'__arch'.exe.test]
8 $ exe_dir := sys$disk:[-.'__arch'.exe.apps]
12 $ key="[-.apps]server.pem"
18 $ cert="[-.apps]server.pem"
22 $ ssltest := mcr 'texe_dir'ssltest -key 'key' -cert 'cert' -c_key 'key' -c_cert 'cert'
25 $ define/user sys$output testssl-x509-output.
26 $ define/user sys$error nla0:
27 $ mcr 'exe_dir'openssl x509 -in 'cert' -text -noout
28 $ define/user sys$error nla0:
29 $ search/output=nla0: testssl-x509-output. "DSA Public Key"/exact
36 $ delete testssl-x509-output.;*
40 $ copy/concatenate [-.certs]*.pem certs.tmp
41 $ CA = """-CAfile"" certs.tmp"
43 $ CA = """-CAfile"" "+p3
46 $!###########################################################################
48 $ write sys$output "test sslv2"
50 $ if $severity .ne. 1 then goto exit3
52 $ write sys$output "test sslv2 with server authentication"
53 $ 'ssltest' -ssl2 -server_auth 'CA'
54 $ if $severity .ne. 1 then goto exit3
58 $ write sys$output "test sslv2 with client authentication"
59 $ 'ssltest' -ssl2 -client_auth 'CA'
60 $ if $severity .ne. 1 then goto exit3
62 $ write sys$output "test sslv2 with both client and server authentication"
63 $ 'ssltest' -ssl2 -server_auth -client_auth 'CA'
64 $ if $severity .ne. 1 then goto exit3
67 $ write sys$output "test sslv3"
69 $ if $severity .ne. 1 then goto exit3
71 $ write sys$output "test sslv3 with server authentication"
72 $ 'ssltest' -ssl3 -server_auth 'CA'
73 $ if $severity .ne. 1 then goto exit3
75 $ write sys$output "test sslv3 with client authentication"
76 $ 'ssltest' -ssl3 -client_auth 'CA'
77 $ if $severity .ne. 1 then goto exit3
79 $ write sys$output "test sslv3 with both client and server authentication"
80 $ 'ssltest' -ssl3 -server_auth -client_auth 'CA'
81 $ if $severity .ne. 1 then goto exit3
83 $ write sys$output "test sslv2/sslv3"
85 $ if $severity .ne. 1 then goto exit3
87 $ write sys$output "test sslv2/sslv3 with server authentication"
88 $ 'ssltest' -server_auth 'CA'
89 $ if $severity .ne. 1 then goto exit3
91 $ write sys$output "test sslv2/sslv3 with client authentication"
92 $ 'ssltest' -client_auth 'CA'
93 $ if $severity .ne. 1 then goto exit3
95 $ write sys$output "test sslv2/sslv3 with both client and server authentication"
96 $ 'ssltest' -server_auth -client_auth 'CA'
97 $ if $severity .ne. 1 then goto exit3
99 $ write sys$output "test sslv2 via BIO pair"
100 $ 'ssltest' -bio_pair -ssl2
101 $ if $severity .ne. 1 then goto exit3
103 $ write sys$output "test sslv2 with server authentication via BIO pair"
104 $ 'ssltest' -bio_pair -ssl2 -server_auth 'CA'
105 $ if $severity .ne. 1 then goto exit3
109 $ write sys$output "test sslv2 with client authentication via BIO pair"
110 $ 'ssltest' -bio_pair -ssl2 -client_auth 'CA'
111 $ if $severity .ne. 1 then goto exit3
113 $ write sys$output "test sslv2 with both client and server authentication via BIO pair"
114 $ 'ssltest' -bio_pair -ssl2 -server_auth -client_auth 'CA'
115 $ if $severity .ne. 1 then goto exit3
118 $ write sys$output "test sslv3 via BIO pair"
119 $ 'ssltest' -bio_pair -ssl3
120 $ if $severity .ne. 1 then goto exit3
122 $ write sys$output "test sslv3 with server authentication via BIO pair"
123 $ 'ssltest' -bio_pair -ssl3 -server_auth 'CA'
124 $ if $severity .ne. 1 then goto exit3
126 $ write sys$output "test sslv3 with client authentication via BIO pair"
127 $ 'ssltest' -bio_pair -ssl3 -client_auth 'CA'
128 $ if $severity .ne. 1 then goto exit3
130 $ write sys$output "test sslv3 with both client and server authentication via BIO pair"
131 $ 'ssltest' -bio_pair -ssl3 -server_auth -client_auth 'CA'
132 $ if $severity .ne. 1 then goto exit3
134 $ write sys$output "test sslv2/sslv3 via BIO pair"
136 $ if $severity .ne. 1 then goto exit3
140 $ write sys$output "test sslv2/sslv3 w/o DHE via BIO pair"
141 $ 'ssltest' -bio_pair -no_dhe
142 $ if $severity .ne. 1 then goto exit3
145 $ write sys$output "test sslv2/sslv3 with 1024 bit DHE via BIO pair"
146 $ 'ssltest' -bio_pair -dhe1024dsa -v
147 $ if $severity .ne. 1 then goto exit3
149 $ write sys$output "test sslv2/sslv3 with server authentication"
150 $ 'ssltest' -bio_pair -server_auth 'CA'
151 $ if $severity .ne. 1 then goto exit3
153 $ write sys$output "test sslv2/sslv3 with client authentication via BIO pair"
154 $ 'ssltest' -bio_pair -client_auth 'CA'
155 $ if $severity .ne. 1 then goto exit3
157 $ write sys$output "test sslv2/sslv3 with both client and server authentication via BIO pair"
158 $ 'ssltest' -bio_pair -server_auth -client_auth 'CA'
159 $ if $severity .ne. 1 then goto exit3
161 $!###########################################################################
163 $ define/user sys$output nla0:
164 $ mcr 'exe_dir'openssl no-rsa
166 $ define/user sys$output nla0:
167 $ mcr 'exe_dir'openssl no-dh
172 $ write sys$output "skipping anonymous DH tests"
174 $ write sys$output "test tls1 with 1024bit anonymous DH, multiple handshakes"
175 $ 'ssltest' -v -bio_pair -tls1 -cipher "ADH" -dhe1024dsa -num 10 -f -time
176 $ if $severity .ne. 1 then goto exit3
181 $ write sys$output "skipping RSA tests"
183 $ write sys$output "test tls1 with 1024bit RSA, no DHE, multiple handshakes"
184 $ mcr 'texe_dir'ssltest -v -bio_pair -tls1 -cert [-.apps]server2.pem -no_dhe -num 10 -f -time
185 $ if $severity .ne. 1 then goto exit3
189 $ write sys$output "skipping RSA+DHE tests"
191 $ write sys$output "test tls1 with 1024bit RSA, 1024bit DHE, multiple handshakes"
192 $ mcr 'texe_dir'ssltest -v -bio_pair -tls1 -cert [-.apps]server2.pem -dhe1024dsa -num 10 -f -time
193 $ if $severity .ne. 1 then goto exit3
202 $ if p3 .eqs. "" then delete certs.tmp;*