1*4724848cSchristos /* 2*4724848cSchristos * Copyright 2016-2019 The OpenSSL Project Authors. All Rights Reserved. 3*4724848cSchristos * 4*4724848cSchristos * Licensed under the OpenSSL license (the "License"). You may not use 5*4724848cSchristos * this file except in compliance with the License. You can obtain a copy 6*4724848cSchristos * in the file LICENSE in the source distribution or at 7*4724848cSchristos * https://www.openssl.org/source/license.html 8*4724848cSchristos */ 9*4724848cSchristos 10*4724848cSchristos #ifndef OSSL_TEST_SSL_TEST_CTX_H 11*4724848cSchristos #define OSSL_TEST_SSL_TEST_CTX_H 12*4724848cSchristos 13*4724848cSchristos #include <openssl/conf.h> 14*4724848cSchristos #include <openssl/ssl.h> 15*4724848cSchristos 16*4724848cSchristos typedef enum { 17*4724848cSchristos SSL_TEST_SUCCESS = 0, /* Default */ 18*4724848cSchristos SSL_TEST_SERVER_FAIL, 19*4724848cSchristos SSL_TEST_CLIENT_FAIL, 20*4724848cSchristos SSL_TEST_INTERNAL_ERROR, 21*4724848cSchristos /* Couldn't test resumption/renegotiation: original handshake failed. */ 22*4724848cSchristos SSL_TEST_FIRST_HANDSHAKE_FAILED 23*4724848cSchristos } ssl_test_result_t; 24*4724848cSchristos 25*4724848cSchristos typedef enum { 26*4724848cSchristos SSL_TEST_VERIFY_NONE = 0, /* Default */ 27*4724848cSchristos SSL_TEST_VERIFY_ACCEPT_ALL, 28*4724848cSchristos SSL_TEST_VERIFY_REJECT_ALL 29*4724848cSchristos } ssl_verify_callback_t; 30*4724848cSchristos 31*4724848cSchristos typedef enum { 32*4724848cSchristos SSL_TEST_SERVERNAME_NONE = 0, /* Default */ 33*4724848cSchristos SSL_TEST_SERVERNAME_SERVER1, 34*4724848cSchristos SSL_TEST_SERVERNAME_SERVER2, 35*4724848cSchristos SSL_TEST_SERVERNAME_INVALID 36*4724848cSchristos } ssl_servername_t; 37*4724848cSchristos 38*4724848cSchristos typedef enum { 39*4724848cSchristos SSL_TEST_SERVERNAME_CB_NONE = 0, /* Default */ 40*4724848cSchristos SSL_TEST_SERVERNAME_IGNORE_MISMATCH, 41*4724848cSchristos SSL_TEST_SERVERNAME_REJECT_MISMATCH, 42*4724848cSchristos SSL_TEST_SERVERNAME_CLIENT_HELLO_IGNORE_MISMATCH, 43*4724848cSchristos SSL_TEST_SERVERNAME_CLIENT_HELLO_REJECT_MISMATCH, 44*4724848cSchristos SSL_TEST_SERVERNAME_CLIENT_HELLO_NO_V12 45*4724848cSchristos } ssl_servername_callback_t; 46*4724848cSchristos 47*4724848cSchristos typedef enum { 48*4724848cSchristos SSL_TEST_SESSION_TICKET_IGNORE = 0, /* Default */ 49*4724848cSchristos SSL_TEST_SESSION_TICKET_YES, 50*4724848cSchristos SSL_TEST_SESSION_TICKET_NO, 51*4724848cSchristos SSL_TEST_SESSION_TICKET_BROKEN /* Special test */ 52*4724848cSchristos } ssl_session_ticket_t; 53*4724848cSchristos 54*4724848cSchristos typedef enum { 55*4724848cSchristos SSL_TEST_COMPRESSION_NO = 0, /* Default */ 56*4724848cSchristos SSL_TEST_COMPRESSION_YES 57*4724848cSchristos } ssl_compression_t; 58*4724848cSchristos 59*4724848cSchristos typedef enum { 60*4724848cSchristos SSL_TEST_SESSION_ID_IGNORE = 0, /* Default */ 61*4724848cSchristos SSL_TEST_SESSION_ID_YES, 62*4724848cSchristos SSL_TEST_SESSION_ID_NO 63*4724848cSchristos } ssl_session_id_t; 64*4724848cSchristos 65*4724848cSchristos typedef enum { 66*4724848cSchristos SSL_TEST_METHOD_TLS = 0, /* Default */ 67*4724848cSchristos SSL_TEST_METHOD_DTLS 68*4724848cSchristos } ssl_test_method_t; 69*4724848cSchristos 70*4724848cSchristos typedef enum { 71*4724848cSchristos SSL_TEST_HANDSHAKE_SIMPLE = 0, /* Default */ 72*4724848cSchristos SSL_TEST_HANDSHAKE_RESUME, 73*4724848cSchristos SSL_TEST_HANDSHAKE_RENEG_SERVER, 74*4724848cSchristos SSL_TEST_HANDSHAKE_RENEG_CLIENT, 75*4724848cSchristos SSL_TEST_HANDSHAKE_KEY_UPDATE_SERVER, 76*4724848cSchristos SSL_TEST_HANDSHAKE_KEY_UPDATE_CLIENT, 77*4724848cSchristos SSL_TEST_HANDSHAKE_POST_HANDSHAKE_AUTH 78*4724848cSchristos } ssl_handshake_mode_t; 79*4724848cSchristos 80*4724848cSchristos typedef enum { 81*4724848cSchristos SSL_TEST_CT_VALIDATION_NONE = 0, /* Default */ 82*4724848cSchristos SSL_TEST_CT_VALIDATION_PERMISSIVE, 83*4724848cSchristos SSL_TEST_CT_VALIDATION_STRICT 84*4724848cSchristos } ssl_ct_validation_t; 85*4724848cSchristos 86*4724848cSchristos typedef enum { 87*4724848cSchristos SSL_TEST_CERT_STATUS_NONE = 0, /* Default */ 88*4724848cSchristos SSL_TEST_CERT_STATUS_GOOD_RESPONSE, 89*4724848cSchristos SSL_TEST_CERT_STATUS_BAD_RESPONSE 90*4724848cSchristos } ssl_cert_status_t; 91*4724848cSchristos 92*4724848cSchristos /* 93*4724848cSchristos * Server/client settings that aren't supported by the SSL CONF library, 94*4724848cSchristos * such as callbacks. 95*4724848cSchristos */ 96*4724848cSchristos typedef struct { 97*4724848cSchristos /* One of a number of predefined custom callbacks. */ 98*4724848cSchristos ssl_verify_callback_t verify_callback; 99*4724848cSchristos /* One of a number of predefined server names use by the client */ 100*4724848cSchristos ssl_servername_t servername; 101*4724848cSchristos /* Maximum Fragment Length extension mode */ 102*4724848cSchristos int max_fragment_len_mode; 103*4724848cSchristos /* Supported NPN and ALPN protocols. A comma-separated list. */ 104*4724848cSchristos char *npn_protocols; 105*4724848cSchristos char *alpn_protocols; 106*4724848cSchristos ssl_ct_validation_t ct_validation; 107*4724848cSchristos /* Ciphersuites to set on a renegotiation */ 108*4724848cSchristos char *reneg_ciphers; 109*4724848cSchristos char *srp_user; 110*4724848cSchristos char *srp_password; 111*4724848cSchristos /* PHA enabled */ 112*4724848cSchristos int enable_pha; 113*4724848cSchristos } SSL_TEST_CLIENT_CONF; 114*4724848cSchristos 115*4724848cSchristos typedef struct { 116*4724848cSchristos /* SNI callback (server-side). */ 117*4724848cSchristos ssl_servername_callback_t servername_callback; 118*4724848cSchristos /* Supported NPN and ALPN protocols. A comma-separated list. */ 119*4724848cSchristos char *npn_protocols; 120*4724848cSchristos char *alpn_protocols; 121*4724848cSchristos /* Whether to set a broken session ticket callback. */ 122*4724848cSchristos int broken_session_ticket; 123*4724848cSchristos /* Should we send a CertStatus message? */ 124*4724848cSchristos ssl_cert_status_t cert_status; 125*4724848cSchristos /* An SRP user known to the server. */ 126*4724848cSchristos char *srp_user; 127*4724848cSchristos char *srp_password; 128*4724848cSchristos /* Forced PHA */ 129*4724848cSchristos int force_pha; 130*4724848cSchristos char *session_ticket_app_data; 131*4724848cSchristos } SSL_TEST_SERVER_CONF; 132*4724848cSchristos 133*4724848cSchristos typedef struct { 134*4724848cSchristos SSL_TEST_CLIENT_CONF client; 135*4724848cSchristos SSL_TEST_SERVER_CONF server; 136*4724848cSchristos SSL_TEST_SERVER_CONF server2; 137*4724848cSchristos } SSL_TEST_EXTRA_CONF; 138*4724848cSchristos 139*4724848cSchristos typedef struct { 140*4724848cSchristos /* 141*4724848cSchristos * Global test configuration. Does not change between handshakes. 142*4724848cSchristos */ 143*4724848cSchristos /* Whether the server/client CTX should use DTLS or TLS. */ 144*4724848cSchristos ssl_test_method_t method; 145*4724848cSchristos /* Whether to test a resumed/renegotiated handshake. */ 146*4724848cSchristos ssl_handshake_mode_t handshake_mode; 147*4724848cSchristos /* 148*4724848cSchristos * How much application data to exchange (default is 256 bytes). 149*4724848cSchristos * Both peers will send |app_data_size| bytes interleaved. 150*4724848cSchristos */ 151*4724848cSchristos int app_data_size; 152*4724848cSchristos /* Maximum send fragment size. */ 153*4724848cSchristos int max_fragment_size; 154*4724848cSchristos /* KeyUpdate type */ 155*4724848cSchristos int key_update_type; 156*4724848cSchristos 157*4724848cSchristos /* 158*4724848cSchristos * Extra server/client configurations. Per-handshake. 159*4724848cSchristos */ 160*4724848cSchristos /* First handshake. */ 161*4724848cSchristos SSL_TEST_EXTRA_CONF extra; 162*4724848cSchristos /* Resumed handshake. */ 163*4724848cSchristos SSL_TEST_EXTRA_CONF resume_extra; 164*4724848cSchristos 165*4724848cSchristos /* 166*4724848cSchristos * Test expectations. These apply to the LAST handshake. 167*4724848cSchristos */ 168*4724848cSchristos /* Defaults to SUCCESS. */ 169*4724848cSchristos ssl_test_result_t expected_result; 170*4724848cSchristos /* Alerts. 0 if no expectation. */ 171*4724848cSchristos /* See ssl.h for alert codes. */ 172*4724848cSchristos /* Alert sent by the client / received by the server. */ 173*4724848cSchristos int expected_client_alert; 174*4724848cSchristos /* Alert sent by the server / received by the client. */ 175*4724848cSchristos int expected_server_alert; 176*4724848cSchristos /* Negotiated protocol version. 0 if no expectation. */ 177*4724848cSchristos /* See ssl.h for protocol versions. */ 178*4724848cSchristos int expected_protocol; 179*4724848cSchristos /* 180*4724848cSchristos * The expected SNI context to use. 181*4724848cSchristos * We test server-side that the server switched to the expected context. 182*4724848cSchristos * Set by the callback upon success, so if the callback wasn't called or 183*4724848cSchristos * terminated with an alert, the servername will match with 184*4724848cSchristos * SSL_TEST_SERVERNAME_NONE. 185*4724848cSchristos * Note: in the event that the servername was accepted, the client should 186*4724848cSchristos * also receive an empty SNI extension back but we have no way of probing 187*4724848cSchristos * client-side via the API that this was the case. 188*4724848cSchristos */ 189*4724848cSchristos ssl_servername_t expected_servername; 190*4724848cSchristos ssl_session_ticket_t session_ticket_expected; 191*4724848cSchristos int compression_expected; 192*4724848cSchristos /* The expected NPN/ALPN protocol to negotiate. */ 193*4724848cSchristos char *expected_npn_protocol; 194*4724848cSchristos char *expected_alpn_protocol; 195*4724848cSchristos /* Whether the second handshake is resumed or a full handshake (boolean). */ 196*4724848cSchristos int resumption_expected; 197*4724848cSchristos /* Expected temporary key type */ 198*4724848cSchristos int expected_tmp_key_type; 199*4724848cSchristos /* Expected server certificate key type */ 200*4724848cSchristos int expected_server_cert_type; 201*4724848cSchristos /* Expected server signing hash */ 202*4724848cSchristos int expected_server_sign_hash; 203*4724848cSchristos /* Expected server signature type */ 204*4724848cSchristos int expected_server_sign_type; 205*4724848cSchristos /* Expected server CA names */ 206*4724848cSchristos STACK_OF(X509_NAME) *expected_server_ca_names; 207*4724848cSchristos /* Expected client certificate key type */ 208*4724848cSchristos int expected_client_cert_type; 209*4724848cSchristos /* Expected client signing hash */ 210*4724848cSchristos int expected_client_sign_hash; 211*4724848cSchristos /* Expected client signature type */ 212*4724848cSchristos int expected_client_sign_type; 213*4724848cSchristos /* Expected CA names for client auth */ 214*4724848cSchristos STACK_OF(X509_NAME) *expected_client_ca_names; 215*4724848cSchristos /* Whether to use SCTP for the transport */ 216*4724848cSchristos int use_sctp; 217*4724848cSchristos /* Enable SSL_MODE_DTLS_SCTP_LABEL_LENGTH_BUG on client side */ 218*4724848cSchristos int enable_client_sctp_label_bug; 219*4724848cSchristos /* Enable SSL_MODE_DTLS_SCTP_LABEL_LENGTH_BUG on server side */ 220*4724848cSchristos int enable_server_sctp_label_bug; 221*4724848cSchristos /* Whether to expect a session id from the server */ 222*4724848cSchristos ssl_session_id_t session_id_expected; 223*4724848cSchristos char *expected_cipher; 224*4724848cSchristos /* Expected Session Ticket Application Data */ 225*4724848cSchristos char *expected_session_ticket_app_data; 226*4724848cSchristos } SSL_TEST_CTX; 227*4724848cSchristos 228*4724848cSchristos const char *ssl_test_result_name(ssl_test_result_t result); 229*4724848cSchristos const char *ssl_alert_name(int alert); 230*4724848cSchristos const char *ssl_protocol_name(int protocol); 231*4724848cSchristos const char *ssl_verify_callback_name(ssl_verify_callback_t verify_callback); 232*4724848cSchristos const char *ssl_servername_name(ssl_servername_t server); 233*4724848cSchristos const char *ssl_servername_callback_name(ssl_servername_callback_t 234*4724848cSchristos servername_callback); 235*4724848cSchristos const char *ssl_session_ticket_name(ssl_session_ticket_t server); 236*4724848cSchristos const char *ssl_session_id_name(ssl_session_id_t server); 237*4724848cSchristos const char *ssl_test_method_name(ssl_test_method_t method); 238*4724848cSchristos const char *ssl_handshake_mode_name(ssl_handshake_mode_t mode); 239*4724848cSchristos const char *ssl_ct_validation_name(ssl_ct_validation_t mode); 240*4724848cSchristos const char *ssl_certstatus_name(ssl_cert_status_t cert_status); 241*4724848cSchristos const char *ssl_max_fragment_len_name(int MFL_mode); 242*4724848cSchristos 243*4724848cSchristos /* 244*4724848cSchristos * Load the test case context from |conf|. 245*4724848cSchristos * See test/README.ssltest.md for details on the conf file format. 246*4724848cSchristos */ 247*4724848cSchristos SSL_TEST_CTX *SSL_TEST_CTX_create(const CONF *conf, const char *test_section); 248*4724848cSchristos 249*4724848cSchristos SSL_TEST_CTX *SSL_TEST_CTX_new(void); 250*4724848cSchristos 251*4724848cSchristos void SSL_TEST_CTX_free(SSL_TEST_CTX *ctx); 252*4724848cSchristos 253*4724848cSchristos #endif /* OSSL_TEST_SSL_TEST_CTX_H */ 254