Google Git
Sign in
flutter / third_party / openssl / 3a80bd29be74b50771dd20e15282db693dbe9522 / . / test / ssl-tests / 05-sni.conf
blob: d5d350e3993c5536163da12d065d277fed22c485 [file] [log] [blame]
Todd Short5c753de2016-05-12 18:16:52 -0400[diff] [blame]1# Generated with generate_ssl_tests.pl
2
Benjamin Kaduk80de0c52017-01-31 16:06:30 -0600[diff] [blame]3num_tests = 9
Todd Short5c753de2016-05-12 18:16:52 -0400[diff] [blame]4
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]5test-0 = 0-SNI-switch-context
6test-1 = 1-SNI-keep-context
7test-2 = 2-SNI-no-server-support
8test-3 = 3-SNI-no-client-support
9test-4 = 4-SNI-bad-sni-ignore-mismatch
10test-5 = 5-SNI-bad-sni-reject-mismatch
Benjamin Kaduk80de0c52017-01-31 16:06:30 -0600[diff] [blame]11test-6 = 6-SNI-bad-early-sni-ignore-mismatch
12test-7 = 7-SNI-bad-early-sni-reject-mismatch
13test-8 = 8-SNI-early-disable-v12
Todd Short5c753de2016-05-12 18:16:52 -0400[diff] [blame]14# ===========================================================
15
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]16[0-SNI-switch-context]
17ssl_conf = 0-SNI-switch-context-ssl
Todd Short5c753de2016-05-12 18:16:52 -0400[diff] [blame]18
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]19[0-SNI-switch-context-ssl]
20server = 0-SNI-switch-context-server
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]21client = 0-SNI-switch-context-client
Emilia Kasperd0c44152016-07-21 19:19:07 +0200[diff] [blame]22server2 = 0-SNI-switch-context-server
Todd Short5c753de2016-05-12 18:16:52 -0400[diff] [blame]23
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]24[0-SNI-switch-context-server]
Todd Short5c753de2016-05-12 18:16:52 -0400[diff] [blame]25Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
26CipherString = DEFAULT
27PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
28
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]29[0-SNI-switch-context-client]
Todd Short5c753de2016-05-12 18:16:52 -0400[diff] [blame]30CipherString = DEFAULT
31VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
32VerifyMode = Peer
33
Todd Short5c753de2016-05-12 18:16:52 -0400[diff] [blame]34[test-0]
35ExpectedResult = Success
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]36ExpectedServerName = server2
Emilia Kasper9f48bba2016-07-21 16:29:48 +0200[diff] [blame]37server = 0-SNI-switch-context-server-extra
38server2 = 0-SNI-switch-context-server-extra
39client = 0-SNI-switch-context-client-extra
40
41[0-SNI-switch-context-server-extra]
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]42ServerNameCallback = IgnoreMismatch
43
Emilia Kasper9f48bba2016-07-21 16:29:48 +0200[diff] [blame]44[0-SNI-switch-context-client-extra]
45ServerName = server2
46
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]47
48# ===========================================================
49
50[1-SNI-keep-context]
51ssl_conf = 1-SNI-keep-context-ssl
52
53[1-SNI-keep-context-ssl]
54server = 1-SNI-keep-context-server
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]55client = 1-SNI-keep-context-client
Emilia Kasperd0c44152016-07-21 19:19:07 +0200[diff] [blame]56server2 = 1-SNI-keep-context-server
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]57
58[1-SNI-keep-context-server]
59Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
60CipherString = DEFAULT
61PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
62
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]63[1-SNI-keep-context-client]
64CipherString = DEFAULT
65VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
66VerifyMode = Peer
67
68[test-1]
69ExpectedResult = Success
70ExpectedServerName = server1
Emilia Kasper9f48bba2016-07-21 16:29:48 +0200[diff] [blame]71server = 1-SNI-keep-context-server-extra
72server2 = 1-SNI-keep-context-server-extra
73client = 1-SNI-keep-context-client-extra
74
75[1-SNI-keep-context-server-extra]
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]76ServerNameCallback = IgnoreMismatch
77
Emilia Kasper9f48bba2016-07-21 16:29:48 +0200[diff] [blame]78[1-SNI-keep-context-client-extra]
79ServerName = server1
80
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]81
82# ===========================================================
83
84[2-SNI-no-server-support]
85ssl_conf = 2-SNI-no-server-support-ssl
86
87[2-SNI-no-server-support-ssl]
88server = 2-SNI-no-server-support-server
89client = 2-SNI-no-server-support-client
90
91[2-SNI-no-server-support-server]
92Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
93CipherString = DEFAULT
94PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
95
96[2-SNI-no-server-support-client]
97CipherString = DEFAULT
98VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
99VerifyMode = Peer
100
101[test-2]
102ExpectedResult = Success
Emilia Kasper9f48bba2016-07-21 16:29:48 +0200[diff] [blame]103client = 2-SNI-no-server-support-client-extra
104
105[2-SNI-no-server-support-client-extra]
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]106ServerName = server1
107
108
109# ===========================================================
110
111[3-SNI-no-client-support]
112ssl_conf = 3-SNI-no-client-support-ssl
113
114[3-SNI-no-client-support-ssl]
115server = 3-SNI-no-client-support-server
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]116client = 3-SNI-no-client-support-client
Emilia Kasperd0c44152016-07-21 19:19:07 +0200[diff] [blame]117server2 = 3-SNI-no-client-support-server
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]118
119[3-SNI-no-client-support-server]
120Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
121CipherString = DEFAULT
122PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
123
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]124[3-SNI-no-client-support-client]
125CipherString = DEFAULT
126VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
127VerifyMode = Peer
128
129[test-3]
130ExpectedResult = Success
131ExpectedServerName = server1
Emilia Kasper9f48bba2016-07-21 16:29:48 +0200[diff] [blame]132server = 3-SNI-no-client-support-server-extra
133server2 = 3-SNI-no-client-support-server-extra
134
135[3-SNI-no-client-support-server-extra]
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]136ServerNameCallback = IgnoreMismatch
137
138
139# ===========================================================
140
141[4-SNI-bad-sni-ignore-mismatch]
142ssl_conf = 4-SNI-bad-sni-ignore-mismatch-ssl
143
144[4-SNI-bad-sni-ignore-mismatch-ssl]
145server = 4-SNI-bad-sni-ignore-mismatch-server
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]146client = 4-SNI-bad-sni-ignore-mismatch-client
Emilia Kasperd0c44152016-07-21 19:19:07 +0200[diff] [blame]147server2 = 4-SNI-bad-sni-ignore-mismatch-server
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]148
149[4-SNI-bad-sni-ignore-mismatch-server]
150Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
151CipherString = DEFAULT
152PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
153
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]154[4-SNI-bad-sni-ignore-mismatch-client]
155CipherString = DEFAULT
156VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
157VerifyMode = Peer
158
159[test-4]
160ExpectedResult = Success
161ExpectedServerName = server1
Emilia Kasper9f48bba2016-07-21 16:29:48 +0200[diff] [blame]162server = 4-SNI-bad-sni-ignore-mismatch-server-extra
163server2 = 4-SNI-bad-sni-ignore-mismatch-server-extra
164client = 4-SNI-bad-sni-ignore-mismatch-client-extra
165
166[4-SNI-bad-sni-ignore-mismatch-server-extra]
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]167ServerNameCallback = IgnoreMismatch
168
Emilia Kasper9f48bba2016-07-21 16:29:48 +0200[diff] [blame]169[4-SNI-bad-sni-ignore-mismatch-client-extra]
170ServerName = invalid
171
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]172
173# ===========================================================
174
175[5-SNI-bad-sni-reject-mismatch]
176ssl_conf = 5-SNI-bad-sni-reject-mismatch-ssl
177
178[5-SNI-bad-sni-reject-mismatch-ssl]
179server = 5-SNI-bad-sni-reject-mismatch-server
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]180client = 5-SNI-bad-sni-reject-mismatch-client
Emilia Kasperd0c44152016-07-21 19:19:07 +0200[diff] [blame]181server2 = 5-SNI-bad-sni-reject-mismatch-server
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]182
183[5-SNI-bad-sni-reject-mismatch-server]
184Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
185CipherString = DEFAULT
186PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
187
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]188[5-SNI-bad-sni-reject-mismatch-client]
189CipherString = DEFAULT
190VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
191VerifyMode = Peer
192
193[test-5]
194ExpectedResult = ServerFail
Emilia Kasper9f48bba2016-07-21 16:29:48 +0200[diff] [blame]195ExpectedServerAlert = UnrecognizedName
196server = 5-SNI-bad-sni-reject-mismatch-server-extra
197server2 = 5-SNI-bad-sni-reject-mismatch-server-extra
198client = 5-SNI-bad-sni-reject-mismatch-client-extra
199
200[5-SNI-bad-sni-reject-mismatch-server-extra]
Emilia Kasperd2b23cd2016-06-20 17:20:25 +0200[diff] [blame]201ServerNameCallback = RejectMismatch
Todd Short5c753de2016-05-12 18:16:52 -0400[diff] [blame]202
Emilia Kasper9f48bba2016-07-21 16:29:48 +0200[diff] [blame]203[5-SNI-bad-sni-reject-mismatch-client-extra]
204ServerName = invalid
205
Todd Short5c753de2016-05-12 18:16:52 -0400[diff] [blame]206
Benjamin Kaduk80de0c52017-01-31 16:06:30 -0600[diff] [blame]207# ===========================================================
208
209[6-SNI-bad-early-sni-ignore-mismatch]
210ssl_conf = 6-SNI-bad-early-sni-ignore-mismatch-ssl
211
212[6-SNI-bad-early-sni-ignore-mismatch-ssl]
213server = 6-SNI-bad-early-sni-ignore-mismatch-server
214client = 6-SNI-bad-early-sni-ignore-mismatch-client
215server2 = 6-SNI-bad-early-sni-ignore-mismatch-server
216
217[6-SNI-bad-early-sni-ignore-mismatch-server]
218Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
219CipherString = DEFAULT
220PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
221
222[6-SNI-bad-early-sni-ignore-mismatch-client]
223CipherString = DEFAULT
224VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
225VerifyMode = Peer
226
227[test-6]
228ExpectedResult = Success
229ExpectedServerName = server1
230server = 6-SNI-bad-early-sni-ignore-mismatch-server-extra
231server2 = 6-SNI-bad-early-sni-ignore-mismatch-server-extra
232client = 6-SNI-bad-early-sni-ignore-mismatch-client-extra
233
234[6-SNI-bad-early-sni-ignore-mismatch-server-extra]
235ServerNameCallback = EarlyIgnoreMismatch
236
237[6-SNI-bad-early-sni-ignore-mismatch-client-extra]
238ServerName = invalid
239
240
241# ===========================================================
242
243[7-SNI-bad-early-sni-reject-mismatch]
244ssl_conf = 7-SNI-bad-early-sni-reject-mismatch-ssl
245
246[7-SNI-bad-early-sni-reject-mismatch-ssl]
247server = 7-SNI-bad-early-sni-reject-mismatch-server
248client = 7-SNI-bad-early-sni-reject-mismatch-client
249server2 = 7-SNI-bad-early-sni-reject-mismatch-server
250
251[7-SNI-bad-early-sni-reject-mismatch-server]
252Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
253CipherString = DEFAULT
254PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
255
256[7-SNI-bad-early-sni-reject-mismatch-client]
257CipherString = DEFAULT
258VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
259VerifyMode = Peer
260
261[test-7]
262ExpectedResult = ServerFail
263ExpectedServerAlert = UnrecognizedName
264server = 7-SNI-bad-early-sni-reject-mismatch-server-extra
265server2 = 7-SNI-bad-early-sni-reject-mismatch-server-extra
266client = 7-SNI-bad-early-sni-reject-mismatch-client-extra
267
268[7-SNI-bad-early-sni-reject-mismatch-server-extra]
269ServerNameCallback = EarlyRejectMismatch
270
271[7-SNI-bad-early-sni-reject-mismatch-client-extra]
272ServerName = invalid
273
274
275# ===========================================================
276
277[8-SNI-early-disable-v12]
278ssl_conf = 8-SNI-early-disable-v12-ssl
279
280[8-SNI-early-disable-v12-ssl]
281server = 8-SNI-early-disable-v12-server
282client = 8-SNI-early-disable-v12-client
283server2 = 8-SNI-early-disable-v12-server
284
285[8-SNI-early-disable-v12-server]
286Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
287CipherString = DEFAULT
288PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
289
290[8-SNI-early-disable-v12-client]
291CipherString = DEFAULT
292VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
293VerifyMode = Peer
294
295[test-8]
296ExpectedProtocol = TLSv1.1
297ExpectedServerName = server2
298server = 8-SNI-early-disable-v12-server-extra
299server2 = 8-SNI-early-disable-v12-server-extra
300client = 8-SNI-early-disable-v12-client-extra
301
302[8-SNI-early-disable-v12-server-extra]
303ServerNameCallback = EarlyNoV12
304
305[8-SNI-early-disable-v12-client-extra]
306ServerName = server2
307
308