30-extended-master-secret.cnf 6.2 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203
  1. # Generated with generate_ssl_tests.pl
  2. num_tests = 7
  3. test-0 = 0-disable-extended-master-secret-server-sha
  4. test-1 = 1-disable-extended-master-secret-client-sha
  5. test-2 = 2-disable-extended-master-secret-both-sha
  6. test-3 = 3-disable-extended-master-secret-both-resume
  7. test-4 = 4-disable-extended-master-secret-server-sha2
  8. test-5 = 5-disable-extended-master-secret-client-sha2
  9. test-6 = 6-disable-extended-master-secret-both-sha2
  10. # ===========================================================
  11. [0-disable-extended-master-secret-server-sha]
  12. ssl_conf = 0-disable-extended-master-secret-server-sha-ssl
  13. [0-disable-extended-master-secret-server-sha-ssl]
  14. server = 0-disable-extended-master-secret-server-sha-server
  15. client = 0-disable-extended-master-secret-server-sha-client
  16. [0-disable-extended-master-secret-server-sha-server]
  17. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  18. CipherString = DEFAULT
  19. Options = -ExtendedMasterSecret
  20. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  21. [0-disable-extended-master-secret-server-sha-client]
  22. CipherString = AES128-SHA
  23. MaxProtocol = TLSv1.2
  24. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  25. VerifyMode = Peer
  26. [test-0]
  27. ExpectedResult = Success
  28. # ===========================================================
  29. [1-disable-extended-master-secret-client-sha]
  30. ssl_conf = 1-disable-extended-master-secret-client-sha-ssl
  31. [1-disable-extended-master-secret-client-sha-ssl]
  32. server = 1-disable-extended-master-secret-client-sha-server
  33. client = 1-disable-extended-master-secret-client-sha-client
  34. [1-disable-extended-master-secret-client-sha-server]
  35. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  36. CipherString = DEFAULT
  37. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  38. [1-disable-extended-master-secret-client-sha-client]
  39. CipherString = AES128-SHA
  40. MaxProtocol = TLSv1.2
  41. Options = -ExtendedMasterSecret
  42. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  43. VerifyMode = Peer
  44. [test-1]
  45. ExpectedResult = Success
  46. # ===========================================================
  47. [2-disable-extended-master-secret-both-sha]
  48. ssl_conf = 2-disable-extended-master-secret-both-sha-ssl
  49. [2-disable-extended-master-secret-both-sha-ssl]
  50. server = 2-disable-extended-master-secret-both-sha-server
  51. client = 2-disable-extended-master-secret-both-sha-client
  52. [2-disable-extended-master-secret-both-sha-server]
  53. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  54. CipherString = DEFAULT
  55. Options = -ExtendedMasterSecret
  56. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  57. [2-disable-extended-master-secret-both-sha-client]
  58. CipherString = AES128-SHA
  59. MaxProtocol = TLSv1.2
  60. Options = -ExtendedMasterSecret
  61. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  62. VerifyMode = Peer
  63. [test-2]
  64. ExpectedResult = Success
  65. # ===========================================================
  66. [3-disable-extended-master-secret-both-resume]
  67. ssl_conf = 3-disable-extended-master-secret-both-resume-ssl
  68. [3-disable-extended-master-secret-both-resume-ssl]
  69. server = 3-disable-extended-master-secret-both-resume-server
  70. client = 3-disable-extended-master-secret-both-resume-client
  71. resume-server = 3-disable-extended-master-secret-both-resume-resume-server
  72. resume-client = 3-disable-extended-master-secret-both-resume-resume-client
  73. [3-disable-extended-master-secret-both-resume-server]
  74. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  75. CipherString = DEFAULT
  76. Options = -ExtendedMasterSecret
  77. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  78. [3-disable-extended-master-secret-both-resume-resume-server]
  79. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  80. CipherString = DEFAULT
  81. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  82. [3-disable-extended-master-secret-both-resume-client]
  83. CipherString = AES128-SHA
  84. MaxProtocol = TLSv1.2
  85. Options = -ExtendedMasterSecret
  86. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  87. VerifyMode = Peer
  88. [3-disable-extended-master-secret-both-resume-resume-client]
  89. CipherString = AES128-SHA
  90. MaxProtocol = TLSv1.2
  91. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  92. VerifyMode = Peer
  93. [test-3]
  94. ExpectedResult = Success
  95. HandshakeMode = Resume
  96. # ===========================================================
  97. [4-disable-extended-master-secret-server-sha2]
  98. ssl_conf = 4-disable-extended-master-secret-server-sha2-ssl
  99. [4-disable-extended-master-secret-server-sha2-ssl]
  100. server = 4-disable-extended-master-secret-server-sha2-server
  101. client = 4-disable-extended-master-secret-server-sha2-client
  102. [4-disable-extended-master-secret-server-sha2-server]
  103. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  104. CipherString = DEFAULT
  105. Options = -ExtendedMasterSecret
  106. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  107. [4-disable-extended-master-secret-server-sha2-client]
  108. CipherString = AES128-SHA256
  109. MaxProtocol = TLSv1.2
  110. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  111. VerifyMode = Peer
  112. [test-4]
  113. ExpectedResult = Success
  114. # ===========================================================
  115. [5-disable-extended-master-secret-client-sha2]
  116. ssl_conf = 5-disable-extended-master-secret-client-sha2-ssl
  117. [5-disable-extended-master-secret-client-sha2-ssl]
  118. server = 5-disable-extended-master-secret-client-sha2-server
  119. client = 5-disable-extended-master-secret-client-sha2-client
  120. [5-disable-extended-master-secret-client-sha2-server]
  121. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  122. CipherString = DEFAULT
  123. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  124. [5-disable-extended-master-secret-client-sha2-client]
  125. CipherString = AES128-SHA256
  126. MaxProtocol = TLSv1.2
  127. Options = -ExtendedMasterSecret
  128. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  129. VerifyMode = Peer
  130. [test-5]
  131. ExpectedResult = Success
  132. # ===========================================================
  133. [6-disable-extended-master-secret-both-sha2]
  134. ssl_conf = 6-disable-extended-master-secret-both-sha2-ssl
  135. [6-disable-extended-master-secret-both-sha2-ssl]
  136. server = 6-disable-extended-master-secret-both-sha2-server
  137. client = 6-disable-extended-master-secret-both-sha2-client
  138. [6-disable-extended-master-secret-both-sha2-server]
  139. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  140. CipherString = DEFAULT
  141. Options = -ExtendedMasterSecret
  142. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  143. [6-disable-extended-master-secret-both-sha2-client]
  144. CipherString = AES128-SHA256
  145. MaxProtocol = TLSv1.2
  146. Options = -ExtendedMasterSecret
  147. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  148. VerifyMode = Peer
  149. [test-6]
  150. ExpectedResult = Success