xref: /freebsd/crypto/openssl/test/ssl-tests/18-dtls-renegotiate.cnf (revision a90b9d0159070121c221b966469c3e36d912bf82)
1# Generated with generate_ssl_tests.pl
2
3num_tests = 9
4
5test-0 = 0-renegotiate-client-no-resume
6test-1 = 1-renegotiate-client-resume
7test-2 = 2-renegotiate-server-resume
8test-3 = 3-renegotiate-client-auth-require
9test-4 = 4-renegotiate-client-auth-once
10test-5 = 5-renegotiate-aead-to-non-aead
11test-6 = 6-renegotiate-non-aead-to-aead
12test-7 = 7-renegotiate-non-aead-to-non-aead
13test-8 = 8-renegotiate-aead-to-aead
14# ===========================================================
15
16[0-renegotiate-client-no-resume]
17ssl_conf = 0-renegotiate-client-no-resume-ssl
18
19[0-renegotiate-client-no-resume-ssl]
20server = 0-renegotiate-client-no-resume-server
21client = 0-renegotiate-client-no-resume-client
22
23[0-renegotiate-client-no-resume-server]
24Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
25CipherString = DEFAULT:@SECLEVEL=0
26Options = NoResumptionOnRenegotiation
27PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
28
29[0-renegotiate-client-no-resume-client]
30CipherString = DEFAULT:@SECLEVEL=0
31VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
32VerifyMode = Peer
33
34[test-0]
35ExpectedResult = Success
36HandshakeMode = RenegotiateClient
37Method = DTLS
38ResumptionExpected = No
39UseSCTP = No
40
41
42# ===========================================================
43
44[1-renegotiate-client-resume]
45ssl_conf = 1-renegotiate-client-resume-ssl
46
47[1-renegotiate-client-resume-ssl]
48server = 1-renegotiate-client-resume-server
49client = 1-renegotiate-client-resume-client
50
51[1-renegotiate-client-resume-server]
52Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
53CipherString = DEFAULT:@SECLEVEL=0
54PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
55
56[1-renegotiate-client-resume-client]
57CipherString = DEFAULT:@SECLEVEL=0
58VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
59VerifyMode = Peer
60
61[test-1]
62ExpectedResult = Success
63HandshakeMode = RenegotiateClient
64Method = DTLS
65ResumptionExpected = Yes
66UseSCTP = No
67
68
69# ===========================================================
70
71[2-renegotiate-server-resume]
72ssl_conf = 2-renegotiate-server-resume-ssl
73
74[2-renegotiate-server-resume-ssl]
75server = 2-renegotiate-server-resume-server
76client = 2-renegotiate-server-resume-client
77
78[2-renegotiate-server-resume-server]
79Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
80CipherString = DEFAULT:@SECLEVEL=0
81PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
82
83[2-renegotiate-server-resume-client]
84CipherString = DEFAULT:@SECLEVEL=0
85VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
86VerifyMode = Peer
87
88[test-2]
89ExpectedResult = Success
90HandshakeMode = RenegotiateServer
91Method = DTLS
92ResumptionExpected = No
93UseSCTP = No
94
95
96# ===========================================================
97
98[3-renegotiate-client-auth-require]
99ssl_conf = 3-renegotiate-client-auth-require-ssl
100
101[3-renegotiate-client-auth-require-ssl]
102server = 3-renegotiate-client-auth-require-server
103client = 3-renegotiate-client-auth-require-client
104
105[3-renegotiate-client-auth-require-server]
106Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
107CipherString = DEFAULT:@SECLEVEL=0
108PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
109VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
110VerifyMode = Require
111
112[3-renegotiate-client-auth-require-client]
113Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
114CipherString = DEFAULT:@SECLEVEL=0
115PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
116VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
117VerifyMode = Peer
118
119[test-3]
120ExpectedResult = Success
121HandshakeMode = RenegotiateServer
122Method = DTLS
123ResumptionExpected = No
124UseSCTP = No
125
126
127# ===========================================================
128
129[4-renegotiate-client-auth-once]
130ssl_conf = 4-renegotiate-client-auth-once-ssl
131
132[4-renegotiate-client-auth-once-ssl]
133server = 4-renegotiate-client-auth-once-server
134client = 4-renegotiate-client-auth-once-client
135
136[4-renegotiate-client-auth-once-server]
137Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
138CipherString = DEFAULT:@SECLEVEL=0
139PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
140VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
141VerifyMode = Once
142
143[4-renegotiate-client-auth-once-client]
144Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
145CipherString = DEFAULT:@SECLEVEL=0
146PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
147VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
148VerifyMode = Peer
149
150[test-4]
151ExpectedResult = Success
152HandshakeMode = RenegotiateServer
153Method = DTLS
154ResumptionExpected = No
155UseSCTP = No
156
157
158# ===========================================================
159
160[5-renegotiate-aead-to-non-aead]
161ssl_conf = 5-renegotiate-aead-to-non-aead-ssl
162
163[5-renegotiate-aead-to-non-aead-ssl]
164server = 5-renegotiate-aead-to-non-aead-server
165client = 5-renegotiate-aead-to-non-aead-client
166
167[5-renegotiate-aead-to-non-aead-server]
168Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
169CipherString = DEFAULT
170Options = NoResumptionOnRenegotiation
171PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
172
173[5-renegotiate-aead-to-non-aead-client]
174CipherString = AES128-GCM-SHA256
175VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
176VerifyMode = Peer
177
178[test-5]
179ExpectedResult = Success
180HandshakeMode = RenegotiateClient
181Method = DTLS
182ResumptionExpected = No
183UseSCTP = No
184client = 5-renegotiate-aead-to-non-aead-client-extra
185
186[5-renegotiate-aead-to-non-aead-client-extra]
187RenegotiateCiphers = AES128-SHA
188
189
190# ===========================================================
191
192[6-renegotiate-non-aead-to-aead]
193ssl_conf = 6-renegotiate-non-aead-to-aead-ssl
194
195[6-renegotiate-non-aead-to-aead-ssl]
196server = 6-renegotiate-non-aead-to-aead-server
197client = 6-renegotiate-non-aead-to-aead-client
198
199[6-renegotiate-non-aead-to-aead-server]
200Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
201CipherString = DEFAULT
202Options = NoResumptionOnRenegotiation
203PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
204
205[6-renegotiate-non-aead-to-aead-client]
206CipherString = AES128-SHA
207VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
208VerifyMode = Peer
209
210[test-6]
211ExpectedResult = Success
212HandshakeMode = RenegotiateClient
213Method = DTLS
214ResumptionExpected = No
215UseSCTP = No
216client = 6-renegotiate-non-aead-to-aead-client-extra
217
218[6-renegotiate-non-aead-to-aead-client-extra]
219RenegotiateCiphers = AES128-GCM-SHA256
220
221
222# ===========================================================
223
224[7-renegotiate-non-aead-to-non-aead]
225ssl_conf = 7-renegotiate-non-aead-to-non-aead-ssl
226
227[7-renegotiate-non-aead-to-non-aead-ssl]
228server = 7-renegotiate-non-aead-to-non-aead-server
229client = 7-renegotiate-non-aead-to-non-aead-client
230
231[7-renegotiate-non-aead-to-non-aead-server]
232Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
233CipherString = DEFAULT
234Options = NoResumptionOnRenegotiation
235PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
236
237[7-renegotiate-non-aead-to-non-aead-client]
238CipherString = AES128-SHA
239VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
240VerifyMode = Peer
241
242[test-7]
243ExpectedResult = Success
244HandshakeMode = RenegotiateClient
245Method = DTLS
246ResumptionExpected = No
247UseSCTP = No
248client = 7-renegotiate-non-aead-to-non-aead-client-extra
249
250[7-renegotiate-non-aead-to-non-aead-client-extra]
251RenegotiateCiphers = AES256-SHA
252
253
254# ===========================================================
255
256[8-renegotiate-aead-to-aead]
257ssl_conf = 8-renegotiate-aead-to-aead-ssl
258
259[8-renegotiate-aead-to-aead-ssl]
260server = 8-renegotiate-aead-to-aead-server
261client = 8-renegotiate-aead-to-aead-client
262
263[8-renegotiate-aead-to-aead-server]
264Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
265CipherString = DEFAULT
266Options = NoResumptionOnRenegotiation
267PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
268
269[8-renegotiate-aead-to-aead-client]
270CipherString = AES128-GCM-SHA256
271VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
272VerifyMode = Peer
273
274[test-8]
275ExpectedResult = Success
276HandshakeMode = RenegotiateClient
277Method = DTLS
278ResumptionExpected = No
279UseSCTP = No
280client = 8-renegotiate-aead-to-aead-client-extra
281
282[8-renegotiate-aead-to-aead-client-extra]
283RenegotiateCiphers = AES256-GCM-SHA384
284
285
286