11-dtls_resumption.cnf 15 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620
  1. # Generated with generate_ssl_tests.pl
  2. num_tests = 16
  3. test-0 = 0-resumption
  4. test-1 = 1-resumption
  5. test-2 = 2-resumption
  6. test-3 = 3-resumption
  7. test-4 = 4-resumption
  8. test-5 = 5-resumption
  9. test-6 = 6-resumption
  10. test-7 = 7-resumption
  11. test-8 = 8-resumption
  12. test-9 = 9-resumption
  13. test-10 = 10-resumption
  14. test-11 = 11-resumption
  15. test-12 = 12-resumption
  16. test-13 = 13-resumption
  17. test-14 = 14-resumption
  18. test-15 = 15-resumption
  19. # ===========================================================
  20. [0-resumption]
  21. ssl_conf = 0-resumption-ssl
  22. [0-resumption-ssl]
  23. server = 0-resumption-server
  24. client = 0-resumption-client
  25. resume-server = 0-resumption-resume-server
  26. resume-client = 0-resumption-client
  27. [0-resumption-server]
  28. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  29. CipherString = DEFAULT:@SECLEVEL=0
  30. MaxProtocol = DTLSv1
  31. MinProtocol = DTLSv1
  32. Options = SessionTicket
  33. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  34. [0-resumption-resume-server]
  35. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  36. CipherString = DEFAULT:@SECLEVEL=0
  37. MaxProtocol = DTLSv1
  38. Options = SessionTicket
  39. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  40. [0-resumption-client]
  41. CipherString = DEFAULT:@SECLEVEL=0
  42. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  43. VerifyMode = Peer
  44. [test-0]
  45. ExpectedProtocol = DTLSv1
  46. HandshakeMode = Resume
  47. Method = DTLS
  48. ResumptionExpected = Yes
  49. # ===========================================================
  50. [1-resumption]
  51. ssl_conf = 1-resumption-ssl
  52. [1-resumption-ssl]
  53. server = 1-resumption-server
  54. client = 1-resumption-client
  55. resume-server = 1-resumption-resume-server
  56. resume-client = 1-resumption-client
  57. [1-resumption-server]
  58. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  59. CipherString = DEFAULT:@SECLEVEL=0
  60. MaxProtocol = DTLSv1
  61. MinProtocol = DTLSv1
  62. Options = -SessionTicket
  63. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  64. [1-resumption-resume-server]
  65. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  66. CipherString = DEFAULT:@SECLEVEL=0
  67. MaxProtocol = DTLSv1
  68. Options = -SessionTicket
  69. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  70. [1-resumption-client]
  71. CipherString = DEFAULT:@SECLEVEL=0
  72. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  73. VerifyMode = Peer
  74. [test-1]
  75. ExpectedProtocol = DTLSv1
  76. HandshakeMode = Resume
  77. Method = DTLS
  78. ResumptionExpected = Yes
  79. # ===========================================================
  80. [2-resumption]
  81. ssl_conf = 2-resumption-ssl
  82. [2-resumption-ssl]
  83. server = 2-resumption-server
  84. client = 2-resumption-client
  85. resume-server = 2-resumption-resume-server
  86. resume-client = 2-resumption-client
  87. [2-resumption-server]
  88. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  89. CipherString = DEFAULT:@SECLEVEL=0
  90. MaxProtocol = DTLSv1
  91. MinProtocol = DTLSv1
  92. Options = SessionTicket
  93. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  94. [2-resumption-resume-server]
  95. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  96. CipherString = DEFAULT:@SECLEVEL=0
  97. MaxProtocol = DTLSv1.2
  98. Options = SessionTicket
  99. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  100. [2-resumption-client]
  101. CipherString = DEFAULT:@SECLEVEL=0
  102. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  103. VerifyMode = Peer
  104. [test-2]
  105. ExpectedProtocol = DTLSv1.2
  106. HandshakeMode = Resume
  107. Method = DTLS
  108. ResumptionExpected = No
  109. # ===========================================================
  110. [3-resumption]
  111. ssl_conf = 3-resumption-ssl
  112. [3-resumption-ssl]
  113. server = 3-resumption-server
  114. client = 3-resumption-client
  115. resume-server = 3-resumption-resume-server
  116. resume-client = 3-resumption-client
  117. [3-resumption-server]
  118. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  119. CipherString = DEFAULT:@SECLEVEL=0
  120. MaxProtocol = DTLSv1
  121. MinProtocol = DTLSv1
  122. Options = -SessionTicket
  123. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  124. [3-resumption-resume-server]
  125. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  126. CipherString = DEFAULT:@SECLEVEL=0
  127. MaxProtocol = DTLSv1.2
  128. Options = -SessionTicket
  129. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  130. [3-resumption-client]
  131. CipherString = DEFAULT:@SECLEVEL=0
  132. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  133. VerifyMode = Peer
  134. [test-3]
  135. ExpectedProtocol = DTLSv1.2
  136. HandshakeMode = Resume
  137. Method = DTLS
  138. ResumptionExpected = No
  139. # ===========================================================
  140. [4-resumption]
  141. ssl_conf = 4-resumption-ssl
  142. [4-resumption-ssl]
  143. server = 4-resumption-server
  144. client = 4-resumption-client
  145. resume-server = 4-resumption-resume-server
  146. resume-client = 4-resumption-client
  147. [4-resumption-server]
  148. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  149. CipherString = DEFAULT:@SECLEVEL=0
  150. MaxProtocol = DTLSv1.2
  151. MinProtocol = DTLSv1.2
  152. Options = SessionTicket
  153. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  154. [4-resumption-resume-server]
  155. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  156. CipherString = DEFAULT:@SECLEVEL=0
  157. MaxProtocol = DTLSv1
  158. Options = SessionTicket
  159. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  160. [4-resumption-client]
  161. CipherString = DEFAULT:@SECLEVEL=0
  162. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  163. VerifyMode = Peer
  164. [test-4]
  165. ExpectedProtocol = DTLSv1
  166. HandshakeMode = Resume
  167. Method = DTLS
  168. ResumptionExpected = No
  169. # ===========================================================
  170. [5-resumption]
  171. ssl_conf = 5-resumption-ssl
  172. [5-resumption-ssl]
  173. server = 5-resumption-server
  174. client = 5-resumption-client
  175. resume-server = 5-resumption-resume-server
  176. resume-client = 5-resumption-client
  177. [5-resumption-server]
  178. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  179. CipherString = DEFAULT:@SECLEVEL=0
  180. MaxProtocol = DTLSv1.2
  181. MinProtocol = DTLSv1.2
  182. Options = -SessionTicket
  183. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  184. [5-resumption-resume-server]
  185. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  186. CipherString = DEFAULT:@SECLEVEL=0
  187. MaxProtocol = DTLSv1
  188. Options = -SessionTicket
  189. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  190. [5-resumption-client]
  191. CipherString = DEFAULT:@SECLEVEL=0
  192. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  193. VerifyMode = Peer
  194. [test-5]
  195. ExpectedProtocol = DTLSv1
  196. HandshakeMode = Resume
  197. Method = DTLS
  198. ResumptionExpected = No
  199. # ===========================================================
  200. [6-resumption]
  201. ssl_conf = 6-resumption-ssl
  202. [6-resumption-ssl]
  203. server = 6-resumption-server
  204. client = 6-resumption-client
  205. resume-server = 6-resumption-resume-server
  206. resume-client = 6-resumption-client
  207. [6-resumption-server]
  208. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  209. CipherString = DEFAULT:@SECLEVEL=0
  210. MaxProtocol = DTLSv1.2
  211. MinProtocol = DTLSv1.2
  212. Options = SessionTicket
  213. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  214. [6-resumption-resume-server]
  215. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  216. CipherString = DEFAULT:@SECLEVEL=0
  217. MaxProtocol = DTLSv1.2
  218. Options = SessionTicket
  219. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  220. [6-resumption-client]
  221. CipherString = DEFAULT:@SECLEVEL=0
  222. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  223. VerifyMode = Peer
  224. [test-6]
  225. ExpectedProtocol = DTLSv1.2
  226. HandshakeMode = Resume
  227. Method = DTLS
  228. ResumptionExpected = Yes
  229. # ===========================================================
  230. [7-resumption]
  231. ssl_conf = 7-resumption-ssl
  232. [7-resumption-ssl]
  233. server = 7-resumption-server
  234. client = 7-resumption-client
  235. resume-server = 7-resumption-resume-server
  236. resume-client = 7-resumption-client
  237. [7-resumption-server]
  238. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  239. CipherString = DEFAULT:@SECLEVEL=0
  240. MaxProtocol = DTLSv1.2
  241. MinProtocol = DTLSv1.2
  242. Options = -SessionTicket
  243. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  244. [7-resumption-resume-server]
  245. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  246. CipherString = DEFAULT:@SECLEVEL=0
  247. MaxProtocol = DTLSv1.2
  248. Options = -SessionTicket
  249. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  250. [7-resumption-client]
  251. CipherString = DEFAULT:@SECLEVEL=0
  252. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  253. VerifyMode = Peer
  254. [test-7]
  255. ExpectedProtocol = DTLSv1.2
  256. HandshakeMode = Resume
  257. Method = DTLS
  258. ResumptionExpected = Yes
  259. # ===========================================================
  260. [8-resumption]
  261. ssl_conf = 8-resumption-ssl
  262. [8-resumption-ssl]
  263. server = 8-resumption-server
  264. client = 8-resumption-client
  265. resume-server = 8-resumption-server
  266. resume-client = 8-resumption-resume-client
  267. [8-resumption-server]
  268. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  269. CipherString = DEFAULT:@SECLEVEL=0
  270. Options = SessionTicket
  271. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  272. [8-resumption-client]
  273. CipherString = DEFAULT:@SECLEVEL=0
  274. MaxProtocol = DTLSv1
  275. MinProtocol = DTLSv1
  276. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  277. VerifyMode = Peer
  278. [8-resumption-resume-client]
  279. CipherString = DEFAULT:@SECLEVEL=0
  280. MaxProtocol = DTLSv1
  281. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  282. VerifyMode = Peer
  283. [test-8]
  284. ExpectedProtocol = DTLSv1
  285. HandshakeMode = Resume
  286. Method = DTLS
  287. ResumptionExpected = Yes
  288. # ===========================================================
  289. [9-resumption]
  290. ssl_conf = 9-resumption-ssl
  291. [9-resumption-ssl]
  292. server = 9-resumption-server
  293. client = 9-resumption-client
  294. resume-server = 9-resumption-server
  295. resume-client = 9-resumption-resume-client
  296. [9-resumption-server]
  297. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  298. CipherString = DEFAULT:@SECLEVEL=0
  299. Options = -SessionTicket
  300. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  301. [9-resumption-client]
  302. CipherString = DEFAULT:@SECLEVEL=0
  303. MaxProtocol = DTLSv1
  304. MinProtocol = DTLSv1
  305. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  306. VerifyMode = Peer
  307. [9-resumption-resume-client]
  308. CipherString = DEFAULT:@SECLEVEL=0
  309. MaxProtocol = DTLSv1
  310. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  311. VerifyMode = Peer
  312. [test-9]
  313. ExpectedProtocol = DTLSv1
  314. HandshakeMode = Resume
  315. Method = DTLS
  316. ResumptionExpected = Yes
  317. # ===========================================================
  318. [10-resumption]
  319. ssl_conf = 10-resumption-ssl
  320. [10-resumption-ssl]
  321. server = 10-resumption-server
  322. client = 10-resumption-client
  323. resume-server = 10-resumption-server
  324. resume-client = 10-resumption-resume-client
  325. [10-resumption-server]
  326. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  327. CipherString = DEFAULT:@SECLEVEL=0
  328. Options = SessionTicket
  329. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  330. [10-resumption-client]
  331. CipherString = DEFAULT:@SECLEVEL=0
  332. MaxProtocol = DTLSv1
  333. MinProtocol = DTLSv1
  334. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  335. VerifyMode = Peer
  336. [10-resumption-resume-client]
  337. CipherString = DEFAULT:@SECLEVEL=0
  338. MaxProtocol = DTLSv1.2
  339. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  340. VerifyMode = Peer
  341. [test-10]
  342. ExpectedProtocol = DTLSv1.2
  343. HandshakeMode = Resume
  344. Method = DTLS
  345. ResumptionExpected = No
  346. # ===========================================================
  347. [11-resumption]
  348. ssl_conf = 11-resumption-ssl
  349. [11-resumption-ssl]
  350. server = 11-resumption-server
  351. client = 11-resumption-client
  352. resume-server = 11-resumption-server
  353. resume-client = 11-resumption-resume-client
  354. [11-resumption-server]
  355. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  356. CipherString = DEFAULT:@SECLEVEL=0
  357. Options = -SessionTicket
  358. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  359. [11-resumption-client]
  360. CipherString = DEFAULT:@SECLEVEL=0
  361. MaxProtocol = DTLSv1
  362. MinProtocol = DTLSv1
  363. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  364. VerifyMode = Peer
  365. [11-resumption-resume-client]
  366. CipherString = DEFAULT:@SECLEVEL=0
  367. MaxProtocol = DTLSv1.2
  368. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  369. VerifyMode = Peer
  370. [test-11]
  371. ExpectedProtocol = DTLSv1.2
  372. HandshakeMode = Resume
  373. Method = DTLS
  374. ResumptionExpected = No
  375. # ===========================================================
  376. [12-resumption]
  377. ssl_conf = 12-resumption-ssl
  378. [12-resumption-ssl]
  379. server = 12-resumption-server
  380. client = 12-resumption-client
  381. resume-server = 12-resumption-server
  382. resume-client = 12-resumption-resume-client
  383. [12-resumption-server]
  384. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  385. CipherString = DEFAULT:@SECLEVEL=0
  386. Options = SessionTicket
  387. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  388. [12-resumption-client]
  389. CipherString = DEFAULT:@SECLEVEL=0
  390. MaxProtocol = DTLSv1.2
  391. MinProtocol = DTLSv1.2
  392. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  393. VerifyMode = Peer
  394. [12-resumption-resume-client]
  395. CipherString = DEFAULT:@SECLEVEL=0
  396. MaxProtocol = DTLSv1
  397. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  398. VerifyMode = Peer
  399. [test-12]
  400. ExpectedProtocol = DTLSv1
  401. HandshakeMode = Resume
  402. Method = DTLS
  403. ResumptionExpected = No
  404. # ===========================================================
  405. [13-resumption]
  406. ssl_conf = 13-resumption-ssl
  407. [13-resumption-ssl]
  408. server = 13-resumption-server
  409. client = 13-resumption-client
  410. resume-server = 13-resumption-server
  411. resume-client = 13-resumption-resume-client
  412. [13-resumption-server]
  413. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  414. CipherString = DEFAULT:@SECLEVEL=0
  415. Options = -SessionTicket
  416. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  417. [13-resumption-client]
  418. CipherString = DEFAULT:@SECLEVEL=0
  419. MaxProtocol = DTLSv1.2
  420. MinProtocol = DTLSv1.2
  421. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  422. VerifyMode = Peer
  423. [13-resumption-resume-client]
  424. CipherString = DEFAULT:@SECLEVEL=0
  425. MaxProtocol = DTLSv1
  426. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  427. VerifyMode = Peer
  428. [test-13]
  429. ExpectedProtocol = DTLSv1
  430. HandshakeMode = Resume
  431. Method = DTLS
  432. ResumptionExpected = No
  433. # ===========================================================
  434. [14-resumption]
  435. ssl_conf = 14-resumption-ssl
  436. [14-resumption-ssl]
  437. server = 14-resumption-server
  438. client = 14-resumption-client
  439. resume-server = 14-resumption-server
  440. resume-client = 14-resumption-resume-client
  441. [14-resumption-server]
  442. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  443. CipherString = DEFAULT:@SECLEVEL=0
  444. Options = SessionTicket
  445. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  446. [14-resumption-client]
  447. CipherString = DEFAULT:@SECLEVEL=0
  448. MaxProtocol = DTLSv1.2
  449. MinProtocol = DTLSv1.2
  450. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  451. VerifyMode = Peer
  452. [14-resumption-resume-client]
  453. CipherString = DEFAULT:@SECLEVEL=0
  454. MaxProtocol = DTLSv1.2
  455. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  456. VerifyMode = Peer
  457. [test-14]
  458. ExpectedProtocol = DTLSv1.2
  459. HandshakeMode = Resume
  460. Method = DTLS
  461. ResumptionExpected = Yes
  462. # ===========================================================
  463. [15-resumption]
  464. ssl_conf = 15-resumption-ssl
  465. [15-resumption-ssl]
  466. server = 15-resumption-server
  467. client = 15-resumption-client
  468. resume-server = 15-resumption-server
  469. resume-client = 15-resumption-resume-client
  470. [15-resumption-server]
  471. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  472. CipherString = DEFAULT:@SECLEVEL=0
  473. Options = -SessionTicket
  474. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  475. [15-resumption-client]
  476. CipherString = DEFAULT:@SECLEVEL=0
  477. MaxProtocol = DTLSv1.2
  478. MinProtocol = DTLSv1.2
  479. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  480. VerifyMode = Peer
  481. [15-resumption-resume-client]
  482. CipherString = DEFAULT:@SECLEVEL=0
  483. MaxProtocol = DTLSv1.2
  484. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  485. VerifyMode = Peer
  486. [test-15]
  487. ExpectedProtocol = DTLSv1.2
  488. HandshakeMode = Resume
  489. Method = DTLS
  490. ResumptionExpected = Yes