[thirdparty/openssl.git] / test / cipherlist_test.c

/*
 * Copyright 2016 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the OpenSSL licenses, (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 * https://www.openssl.org/source/license.html
 * or in the file LICENSE in the source distribution.
 */

#include <stdio.h>

#include <openssl/opensslconf.h>
#include <openssl/err.h>
#include <openssl/e_os2.h>
#include <openssl/ssl.h>
#include <openssl/ssl3.h>
#include <openssl/tls1.h>

#include "e_os.h"
#include "test_main.h"
#include "testutil.h"

typedef struct cipherlist_test_fixture {
    const char *test_case_name;
    SSL_CTX *server;
    SSL_CTX *client;
} CIPHERLIST_TEST_FIXTURE;


static CIPHERLIST_TEST_FIXTURE set_up(const char *const test_case_name)
{
    CIPHERLIST_TEST_FIXTURE fixture;
    fixture.test_case_name = test_case_name;
    fixture.server = SSL_CTX_new(TLS_server_method());
    fixture.client = SSL_CTX_new(TLS_client_method());
    OPENSSL_assert(fixture.client != NULL && fixture.server != NULL);
    return fixture;
}

/*
 * All ciphers in the DEFAULT cipherlist meet the default security level.
 * However, default supported ciphers exclude SRP and PSK ciphersuites
 * for which no callbacks have been set up.
 *
 * Supported ciphers also exclude TLSv1.2 ciphers if TLSv1.2 is disabled,
 * and individual disabled algorithms. However, NO_RSA, NO_AES and NO_SHA
 * are currently broken and should be considered mission impossible in libssl.
 */
static const uint32_t default_ciphers_in_order[] = {
#ifndef OPENSSL_NO_TLS1_2
# ifndef OPENSSL_NO_EC
    TLS1_CK_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
    TLS1_CK_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
# endif
# ifndef OPENSSL_NO_DH
    TLS1_CK_DHE_RSA_WITH_AES_256_GCM_SHA384,
# endif

# if !defined OPENSSL_NO_CHACHA && !defined OPENSSL_NO_POLY1305
#  ifndef OPENSSL_NO_EC
    TLS1_CK_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,
    TLS1_CK_ECDHE_RSA_WITH_CHACHA20_POLY1305,
#  endif
#  ifndef OPENSSL_NO_DH
    TLS1_CK_DHE_RSA_WITH_CHACHA20_POLY1305,
#  endif
# endif  /* !OPENSSL_NO_CHACHA && !OPENSSL_NO_POLY1305 */

# ifndef OPENSSL_NO_EC
    TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
    TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
# endif
# ifndef OPENSSL_NO_DH
    TLS1_CK_DHE_RSA_WITH_AES_128_GCM_SHA256,
# endif
# ifndef OPENSSL_NO_EC
    TLS1_CK_ECDHE_ECDSA_WITH_AES_256_SHA384,
    TLS1_CK_ECDHE_RSA_WITH_AES_256_SHA384,
# endif
# ifndef OPENSSL_NO_DH
    TLS1_CK_DHE_RSA_WITH_AES_256_SHA256,
# endif
# ifndef OPENSSL_NO_EC
    TLS1_CK_ECDHE_ECDSA_WITH_AES_128_SHA256,
    TLS1_CK_ECDHE_RSA_WITH_AES_128_SHA256,
# endif
# ifndef OPENSSL_NO_DH
    TLS1_CK_DHE_RSA_WITH_AES_128_SHA256,
# endif
#endif  /* !OPENSSL_NO_TLS1_2 */

#ifndef OPENSSL_NO_EC
    TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
    TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA,
#endif
#ifndef OPENSSL_NO_DH
    TLS1_CK_DHE_RSA_WITH_AES_256_SHA,
#endif
#ifndef OPENSSL_NO_EC
    TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
    TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA,
#endif
#ifndef OPENSSL_NO_DH
    TLS1_CK_DHE_RSA_WITH_AES_128_SHA,
#endif

#ifndef OPENSSL_NO_TLS1_2
    TLS1_CK_RSA_WITH_AES_256_GCM_SHA384,
    TLS1_CK_RSA_WITH_AES_128_GCM_SHA256,
#endif
#ifndef OPENSSL_NO_TLS1_3
    TLS1_3_CK_AES_256_GCM_SHA384,
    TLS1_3_CK_CHACHA20_POLY1305_SHA256,
    TLS1_3_CK_AES_128_GCM_SHA256,
#endif
#ifndef OPENSSL_NO_TLS1_2
    TLS1_CK_RSA_WITH_AES_256_SHA256,
    TLS1_CK_RSA_WITH_AES_128_SHA256,
#endif
    TLS1_CK_RSA_WITH_AES_256_SHA,
    TLS1_CK_RSA_WITH_AES_128_SHA,
};

static int test_default_cipherlist(SSL_CTX *ctx)
{
    STACK_OF(SSL_CIPHER) *ciphers;
    SSL *ssl;
    int i, ret = 0, num_expected_ciphers, num_ciphers;
    uint32_t expected_cipher_id, cipher_id;

    ssl = SSL_new(ctx);
    OPENSSL_assert(ssl != NULL);

    ciphers = SSL_get1_supported_ciphers(ssl);
    OPENSSL_assert(ciphers != NULL);
    num_expected_ciphers = OSSL_NELEM(default_ciphers_in_order);
    num_ciphers = sk_SSL_CIPHER_num(ciphers);
    if (num_ciphers != num_expected_ciphers) {
        fprintf(stderr, "Expected %d supported ciphers, got %d.\n",
                num_expected_ciphers, num_ciphers);
        goto err;
    }

    for (i = 0; i < num_ciphers; i++) {
        expected_cipher_id = default_ciphers_in_order[i];
        cipher_id = SSL_CIPHER_get_id(sk_SSL_CIPHER_value(ciphers, i));
        if (cipher_id != expected_cipher_id) {
            fprintf(stderr, "Wrong cipher at position %d: expected %x, "
                    "got %x\n", i, expected_cipher_id, cipher_id);
            goto err;
        }
    }

    ret = 1;

 err:
    sk_SSL_CIPHER_free(ciphers);
    SSL_free(ssl);
    return ret;
}

static int execute_test(CIPHERLIST_TEST_FIXTURE fixture)
{
    return test_default_cipherlist(fixture.server)
        && test_default_cipherlist(fixture.client);
}

static void tear_down(CIPHERLIST_TEST_FIXTURE fixture)
{
    SSL_CTX_free(fixture.server);
    SSL_CTX_free(fixture.client);
}

#define SETUP_CIPHERLIST_TEST_FIXTURE() \
    SETUP_TEST_FIXTURE(CIPHERLIST_TEST_FIXTURE, set_up)

#define EXECUTE_CIPHERLIST_TEST() \
    EXECUTE_TEST(execute_test, tear_down)

static int test_default_cipherlist_implicit()
{
    SETUP_CIPHERLIST_TEST_FIXTURE();
    EXECUTE_CIPHERLIST_TEST();
}

static int test_default_cipherlist_explicit()
{
    SETUP_CIPHERLIST_TEST_FIXTURE();
    OPENSSL_assert(SSL_CTX_set_cipher_list(fixture.server, "DEFAULT"));
    OPENSSL_assert(SSL_CTX_set_cipher_list(fixture.client, "DEFAULT"));
    EXECUTE_CIPHERLIST_TEST();
}

void register_tests()
{
    ADD_TEST(test_default_cipherlist_implicit);
    ADD_TEST(test_default_cipherlist_explicit);
}
Commit	Line	Data
5a22cf96 EK	1	/*
	2	* Copyright 2016 The OpenSSL Project Authors. All Rights Reserved.
	3	*
	4	* Licensed under the OpenSSL licenses, (the "License");
	5	* you may not use this file except in compliance with the License.
	6	* You may obtain a copy of the License at
	7	* https://www.openssl.org/source/license.html
	8	* or in the file LICENSE in the source distribution.
	9	*/
	10
	11	#include <stdio.h>
	12
	13	#include <openssl/opensslconf.h>
	14	#include <openssl/err.h>
	15	#include <openssl/e_os2.h>
	16	#include <openssl/ssl.h>
	17	#include <openssl/ssl3.h>
	18	#include <openssl/tls1.h>
	19
	20	#include "e_os.h"
e364c3b2	21	#include "test_main.h"
5a22cf96 EK	22	#include "testutil.h"
	23
	24	typedef struct cipherlist_test_fixture {
	25	const char *test_case_name;
	26	SSL_CTX *server;
	27	SSL_CTX *client;
	28	} CIPHERLIST_TEST_FIXTURE;
	29
	30
	31	static CIPHERLIST_TEST_FIXTURE set_up(const char *const test_case_name)
	32	{
	33	CIPHERLIST_TEST_FIXTURE fixture;
	34	fixture.test_case_name = test_case_name;
	35	fixture.server = SSL_CTX_new(TLS_server_method());
	36	fixture.client = SSL_CTX_new(TLS_client_method());
	37	OPENSSL_assert(fixture.client != NULL && fixture.server != NULL);
	38	return fixture;
	39	}
	40
	41	/*
	42	* All ciphers in the DEFAULT cipherlist meet the default security level.
	43	* However, default supported ciphers exclude SRP and PSK ciphersuites
	44	* for which no callbacks have been set up.
	45	*
	46	* Supported ciphers also exclude TLSv1.2 ciphers if TLSv1.2 is disabled,
	47	* and individual disabled algorithms. However, NO_RSA, NO_AES and NO_SHA
	48	* are currently broken and should be considered mission impossible in libssl.
	49	*/
	50	static const uint32_t default_ciphers_in_order[] = {
	51	#ifndef OPENSSL_NO_TLS1_2
	52	# ifndef OPENSSL_NO_EC
	53	TLS1_CK_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
	54	TLS1_CK_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
	55	# endif
	56	# ifndef OPENSSL_NO_DH
	57	TLS1_CK_DHE_RSA_WITH_AES_256_GCM_SHA384,
	58	# endif
	59
	60	# if !defined OPENSSL_NO_CHACHA && !defined OPENSSL_NO_POLY1305
	61	# ifndef OPENSSL_NO_EC
	62	TLS1_CK_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,
	63	TLS1_CK_ECDHE_RSA_WITH_CHACHA20_POLY1305,
	64	# endif
	65	# ifndef OPENSSL_NO_DH
	66	TLS1_CK_DHE_RSA_WITH_CHACHA20_POLY1305,
	67	# endif
	68	# endif /* !OPENSSL_NO_CHACHA && !OPENSSL_NO_POLY1305 */
	69
	70	# ifndef OPENSSL_NO_EC
	71	TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
	72	TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
	73	# endif
	74	# ifndef OPENSSL_NO_DH
	75	TLS1_CK_DHE_RSA_WITH_AES_128_GCM_SHA256,
	76	# endif
	77	# ifndef OPENSSL_NO_EC
	78	TLS1_CK_ECDHE_ECDSA_WITH_AES_256_SHA384,
	79	TLS1_CK_ECDHE_RSA_WITH_AES_256_SHA384,
	80	# endif
	81	# ifndef OPENSSL_NO_DH
	82	TLS1_CK_DHE_RSA_WITH_AES_256_SHA256,
	83	# endif
	84	# ifndef OPENSSL_NO_EC
	85	TLS1_CK_ECDHE_ECDSA_WITH_AES_128_SHA256,
86	TLS1_CK_ECDHE_RSA_WITH_AES_128_SHA256,
87	# endif
88	# ifndef OPENSSL_NO_DH
89	TLS1_CK_DHE_RSA_WITH_AES_128_SHA256,
90	# endif
91	#endif /* !OPENSSL_NO_TLS1_2 */
92
93	#ifndef OPENSSL_NO_EC
94	TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
95	TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA,
96	#endif
97	#ifndef OPENSSL_NO_DH
98	TLS1_CK_DHE_RSA_WITH_AES_256_SHA,
99	#endif
100	#ifndef OPENSSL_NO_EC
101	TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
102	TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA,
103	#endif
104	#ifndef OPENSSL_NO_DH
105	TLS1_CK_DHE_RSA_WITH_AES_128_SHA,
106	#endif
107
5a22cf96 EK	108	#ifndef OPENSSL_NO_TLS1_2
	109	TLS1_CK_RSA_WITH_AES_256_GCM_SHA384,
	110	TLS1_CK_RSA_WITH_AES_128_GCM_SHA256,
582a17d6 MC	111	#endif
582a17d6 MC	112	#ifndef OPENSSL_NO_TLS1_3
1bbede20 DSH	113	TLS1_3_CK_AES_256_GCM_SHA384,
1bbede20 DSH	114	TLS1_3_CK_CHACHA20_POLY1305_SHA256,
582a17d6 MC	115	TLS1_3_CK_AES_128_GCM_SHA256,
	116	#endif
	117	#ifndef OPENSSL_NO_TLS1_2
5a22cf96 EK	118	TLS1_CK_RSA_WITH_AES_256_SHA256,
	119	TLS1_CK_RSA_WITH_AES_128_SHA256,
	120	#endif
5a22cf96 EK	121	TLS1_CK_RSA_WITH_AES_256_SHA,
5a22cf96 EK	122	TLS1_CK_RSA_WITH_AES_128_SHA,
5a22cf96 EK	123	};
	124
	125	static int test_default_cipherlist(SSL_CTX *ctx)
	126	{
	127	STACK_OF(SSL_CIPHER) *ciphers;
	128	SSL *ssl;
	129	int i, ret = 0, num_expected_ciphers, num_ciphers;
	130	uint32_t expected_cipher_id, cipher_id;
	131
	132	ssl = SSL_new(ctx);
	133	OPENSSL_assert(ssl != NULL);
	134
	135	ciphers = SSL_get1_supported_ciphers(ssl);
	136	OPENSSL_assert(ciphers != NULL);
	137	num_expected_ciphers = OSSL_NELEM(default_ciphers_in_order);
	138	num_ciphers = sk_SSL_CIPHER_num(ciphers);
	139	if (num_ciphers != num_expected_ciphers) {
	140	fprintf(stderr, "Expected %d supported ciphers, got %d.\n",
	141	num_expected_ciphers, num_ciphers);
	142	goto err;
	143	}
	144
	145	for (i = 0; i < num_ciphers; i++) {
	146	expected_cipher_id = default_ciphers_in_order[i];
	147	cipher_id = SSL_CIPHER_get_id(sk_SSL_CIPHER_value(ciphers, i));
	148	if (cipher_id != expected_cipher_id) {
	149	fprintf(stderr, "Wrong cipher at position %d: expected %x, "
	150	"got %x\n", i, expected_cipher_id, cipher_id);
	151	goto err;
	152	}
	153	}
	154
	155	ret = 1;
	156
	157	err:
	158	sk_SSL_CIPHER_free(ciphers);
	159	SSL_free(ssl);
	160	return ret;
	161	}
	162
	163	static int execute_test(CIPHERLIST_TEST_FIXTURE fixture)
	164	{
	165	return test_default_cipherlist(fixture.server)
	166	&& test_default_cipherlist(fixture.client);
	167	}
	168
	169	static void tear_down(CIPHERLIST_TEST_FIXTURE fixture)
	170	{
	171	SSL_CTX_free(fixture.server);
	172	SSL_CTX_free(fixture.client);
5a22cf96 EK	173	}
	174
	175	#define SETUP_CIPHERLIST_TEST_FIXTURE() \
	176	SETUP_TEST_FIXTURE(CIPHERLIST_TEST_FIXTURE, set_up)
	177
	178	#define EXECUTE_CIPHERLIST_TEST() \
	179	EXECUTE_TEST(execute_test, tear_down)
	180
	181	static int test_default_cipherlist_implicit()
	182	{
	183	SETUP_CIPHERLIST_TEST_FIXTURE();
	184	EXECUTE_CIPHERLIST_TEST();
	185	}
	186
	187	static int test_default_cipherlist_explicit()
	188	{
	189	SETUP_CIPHERLIST_TEST_FIXTURE();
	190	OPENSSL_assert(SSL_CTX_set_cipher_list(fixture.server, "DEFAULT"));
	191	OPENSSL_assert(SSL_CTX_set_cipher_list(fixture.client, "DEFAULT"));
	192	EXECUTE_CIPHERLIST_TEST();
	193	}
	194
e364c3b2	195	void register_tests()
5a22cf96	196	{
5a22cf96 EK	197	ADD_TEST(test_default_cipherlist_implicit);
5a22cf96 EK	198	ADD_TEST(test_default_cipherlist_explicit);
5a22cf96	199	}