lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-08-10 05:03:02 +03:00
Code Activity

ssl-opt: Fragmented HS renegotiation, removed requires_certificate_authentication dependency.

Browse Source 
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
This commit is contained in:
Minos Galanakis
2025-03-11 17:11:09 +00:00
parent 5b6ec1566d
commit e5a3fd2f9d
1 changed files with 0 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
tests/ssl-opt.sh
View File

@@ -14475,7 +14475,6 @@ run_test "Handshake defragmentation on server: len=32, TLS 1.2 ClientHello (u
# Test server-side buffer resizing with fragmented handshake on TLS1.2 # Test server-side buffer resizing with fragmented handshake on TLS1.2
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2 requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
requires_certificate_authentication
requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
requires_max_content_len 1025 requires_max_content_len 1025
@@ -14492,7 +14491,6 @@ run_test "Handshake defragmentation on server: len=256, buffer resizing with
# Test client-initiated renegotiation with fragmented handshake on TLS1.2 # Test client-initiated renegotiation with fragmented handshake on TLS1.2
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2 requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
requires_certificate_authentication
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
run_test "Handshake defragmentation on server: len=512, client-initiated renegotation" \ run_test "Handshake defragmentation on server: len=512, client-initiated renegotation" \
"$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \ "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
@@ -14509,7 +14507,6 @@ run_test "Handshake defragmentation on server: len=512, client-initiated rene
-s "Consume: waiting for more handshake fragments 512/" \ -s "Consume: waiting for more handshake fragments 512/" \
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2 requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
requires_certificate_authentication
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
run_test "Handshake defragmentation on server: len=256, client-initiated renegotation" \ run_test "Handshake defragmentation on server: len=256, client-initiated renegotation" \
"$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \ "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
@@ -14527,7 +14524,6 @@ run_test "Handshake defragmentation on server: len=256, client-initiated rene
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2 requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3 requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
requires_certificate_authentication
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
run_test "Handshake defragmentation on server: len=128, client-initiated renegotation" \ run_test "Handshake defragmentation on server: len=128, client-initiated renegotation" \
"$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \ "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
@@ -14562,7 +14558,6 @@ run_test "Handshake defragmentation on server: len=4, client-initiated renego
# Test server-initiated renegotiation with fragmented handshake on TLS1.2 # Test server-initiated renegotiation with fragmented handshake on TLS1.2
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2 requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
requires_certificate_authentication
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
run_test "Handshake defragmentation on client: len=512, server-initiated renegotation" \ run_test "Handshake defragmentation on client: len=512, server-initiated renegotation" \
"$O_NEXT_SRV -tls1_2 -split_send_frag 512 -legacy_renegotiation -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \ "$O_NEXT_SRV -tls1_2 -split_send_frag 512 -legacy_renegotiation -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
@@ -14583,7 +14578,6 @@ run_test "Handshake defragmentation on client: len=512, server-initiated rene
# Splitting messages during the renegotiation process requires a deeper # Splitting messages during the renegotiation process requires a deeper
# stack to accommodate the increased processing complexity. # stack to accommodate the increased processing complexity.
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2 requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
requires_certificate_authentication
requires_config_enabled MBEDTLS_SSL_RENEGOTIATION requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
run_test "Handshake defragmentation on client: len=256, server-initiated renegotation" \ run_test "Handshake defragmentation on client: len=256, server-initiated renegotation" \
"$O_NEXT_SRV -tls1_2 -split_send_frag 256 -legacy_renegotiation -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \ "$O_NEXT_SRV -tls1_2 -split_send_frag 256 -legacy_renegotiation -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \