Always flush the BIO when we send any alert
[openssl.git] / test / ssl-tests / 17-renegotiate.conf
1 # Generated with generate_ssl_tests.pl
2
3 num_tests = 10
4
5 test-0 = 0-renegotiate-client-no-resume
6 test-1 = 1-renegotiate-client-resume
7 test-2 = 2-renegotiate-server-no-resume
8 test-3 = 3-renegotiate-server-resume
9 test-4 = 4-renegotiate-client-auth-require
10 test-5 = 5-renegotiate-client-auth-once
11 test-6 = 6-renegotiate-aead-to-non-aead
12 test-7 = 7-renegotiate-non-aead-to-aead
13 test-8 = 8-renegotiate-non-aead-to-non-aead
14 test-9 = 9-renegotiate-aead-to-aead
15 # ===========================================================
16
17 [0-renegotiate-client-no-resume]
18 ssl_conf = 0-renegotiate-client-no-resume-ssl
19
20 [0-renegotiate-client-no-resume-ssl]
21 server = 0-renegotiate-client-no-resume-server
22 client = 0-renegotiate-client-no-resume-client
23
24 [0-renegotiate-client-no-resume-server]
25 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
26 CipherString = DEFAULT
27 MaxProtocol = TLSv1.2
28 Options = NoResumptionOnRenegotiation
29 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
30
31 [0-renegotiate-client-no-resume-client]
32 CipherString = DEFAULT
33 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
34 VerifyMode = Peer
35
36 [test-0]
37 ExpectedResult = Success
38 HandshakeMode = RenegotiateClient
39 Method = TLS
40 ResumptionExpected = No
41
42
43 # ===========================================================
44
45 [1-renegotiate-client-resume]
46 ssl_conf = 1-renegotiate-client-resume-ssl
47
48 [1-renegotiate-client-resume-ssl]
49 server = 1-renegotiate-client-resume-server
50 client = 1-renegotiate-client-resume-client
51
52 [1-renegotiate-client-resume-server]
53 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
54 CipherString = DEFAULT
55 MaxProtocol = TLSv1.2
56 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
57
58 [1-renegotiate-client-resume-client]
59 CipherString = DEFAULT
60 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
61 VerifyMode = Peer
62
63 [test-1]
64 ExpectedResult = Success
65 HandshakeMode = RenegotiateClient
66 Method = TLS
67 ResumptionExpected = Yes
68
69
70 # ===========================================================
71
72 [2-renegotiate-server-no-resume]
73 ssl_conf = 2-renegotiate-server-no-resume-ssl
74
75 [2-renegotiate-server-no-resume-ssl]
76 server = 2-renegotiate-server-no-resume-server
77 client = 2-renegotiate-server-no-resume-client
78
79 [2-renegotiate-server-no-resume-server]
80 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
81 CipherString = DEFAULT
82 MaxProtocol = TLSv1.2
83 Options = NoResumptionOnRenegotiation
84 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
85
86 [2-renegotiate-server-no-resume-client]
87 CipherString = DEFAULT
88 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
89 VerifyMode = Peer
90
91 [test-2]
92 ExpectedResult = Success
93 HandshakeMode = RenegotiateServer
94 Method = TLS
95 ResumptionExpected = No
96
97
98 # ===========================================================
99
100 [3-renegotiate-server-resume]
101 ssl_conf = 3-renegotiate-server-resume-ssl
102
103 [3-renegotiate-server-resume-ssl]
104 server = 3-renegotiate-server-resume-server
105 client = 3-renegotiate-server-resume-client
106
107 [3-renegotiate-server-resume-server]
108 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
109 CipherString = DEFAULT
110 MaxProtocol = TLSv1.2
111 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
112
113 [3-renegotiate-server-resume-client]
114 CipherString = DEFAULT
115 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
116 VerifyMode = Peer
117
118 [test-3]
119 ExpectedResult = Success
120 HandshakeMode = RenegotiateServer
121 Method = TLS
122 ResumptionExpected = Yes
123
124
125 # ===========================================================
126
127 [4-renegotiate-client-auth-require]
128 ssl_conf = 4-renegotiate-client-auth-require-ssl
129
130 [4-renegotiate-client-auth-require-ssl]
131 server = 4-renegotiate-client-auth-require-server
132 client = 4-renegotiate-client-auth-require-client
133
134 [4-renegotiate-client-auth-require-server]
135 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
136 CipherString = DEFAULT
137 MaxProtocol = TLSv1.2
138 Options = NoResumptionOnRenegotiation
139 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
140 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
141 VerifyMode = Require
142
143 [4-renegotiate-client-auth-require-client]
144 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
145 CipherString = DEFAULT
146 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
147 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
148 VerifyMode = Peer
149
150 [test-4]
151 ExpectedResult = Success
152 HandshakeMode = RenegotiateServer
153 Method = TLS
154 ResumptionExpected = No
155
156
157 # ===========================================================
158
159 [5-renegotiate-client-auth-once]
160 ssl_conf = 5-renegotiate-client-auth-once-ssl
161
162 [5-renegotiate-client-auth-once-ssl]
163 server = 5-renegotiate-client-auth-once-server
164 client = 5-renegotiate-client-auth-once-client
165
166 [5-renegotiate-client-auth-once-server]
167 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
168 CipherString = DEFAULT
169 MaxProtocol = TLSv1.2
170 Options = NoResumptionOnRenegotiation
171 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
172 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
173 VerifyMode = Once
174
175 [5-renegotiate-client-auth-once-client]
176 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
177 CipherString = DEFAULT
178 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
179 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
180 VerifyMode = Peer
181
182 [test-5]
183 ExpectedResult = Success
184 HandshakeMode = RenegotiateServer
185 Method = TLS
186 ResumptionExpected = No
187
188
189 # ===========================================================
190
191 [6-renegotiate-aead-to-non-aead]
192 ssl_conf = 6-renegotiate-aead-to-non-aead-ssl
193
194 [6-renegotiate-aead-to-non-aead-ssl]
195 server = 6-renegotiate-aead-to-non-aead-server
196 client = 6-renegotiate-aead-to-non-aead-client
197
198 [6-renegotiate-aead-to-non-aead-server]
199 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
200 CipherString = DEFAULT
201 Options = NoResumptionOnRenegotiation
202 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
203
204 [6-renegotiate-aead-to-non-aead-client]
205 CipherString = AES128-GCM-SHA256
206 MaxProtocol = TLSv1.2
207 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
208 VerifyMode = Peer
209
210 [test-6]
211 ExpectedResult = Success
212 HandshakeMode = RenegotiateClient
213 Method = TLS
214 ResumptionExpected = No
215 client = 6-renegotiate-aead-to-non-aead-client-extra
216
217 [6-renegotiate-aead-to-non-aead-client-extra]
218 RenegotiateCiphers = AES128-SHA
219
220
221 # ===========================================================
222
223 [7-renegotiate-non-aead-to-aead]
224 ssl_conf = 7-renegotiate-non-aead-to-aead-ssl
225
226 [7-renegotiate-non-aead-to-aead-ssl]
227 server = 7-renegotiate-non-aead-to-aead-server
228 client = 7-renegotiate-non-aead-to-aead-client
229
230 [7-renegotiate-non-aead-to-aead-server]
231 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
232 CipherString = DEFAULT
233 Options = NoResumptionOnRenegotiation
234 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
235
236 [7-renegotiate-non-aead-to-aead-client]
237 CipherString = AES128-SHA
238 MaxProtocol = TLSv1.2
239 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
240 VerifyMode = Peer
241
242 [test-7]
243 ExpectedResult = Success
244 HandshakeMode = RenegotiateClient
245 Method = TLS
246 ResumptionExpected = No
247 client = 7-renegotiate-non-aead-to-aead-client-extra
248
249 [7-renegotiate-non-aead-to-aead-client-extra]
250 RenegotiateCiphers = AES128-GCM-SHA256
251
252
253 # ===========================================================
254
255 [8-renegotiate-non-aead-to-non-aead]
256 ssl_conf = 8-renegotiate-non-aead-to-non-aead-ssl
257
258 [8-renegotiate-non-aead-to-non-aead-ssl]
259 server = 8-renegotiate-non-aead-to-non-aead-server
260 client = 8-renegotiate-non-aead-to-non-aead-client
261
262 [8-renegotiate-non-aead-to-non-aead-server]
263 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
264 CipherString = DEFAULT
265 Options = NoResumptionOnRenegotiation
266 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
267
268 [8-renegotiate-non-aead-to-non-aead-client]
269 CipherString = AES128-SHA
270 MaxProtocol = TLSv1.2
271 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
272 VerifyMode = Peer
273
274 [test-8]
275 ExpectedResult = Success
276 HandshakeMode = RenegotiateClient
277 Method = TLS
278 ResumptionExpected = No
279 client = 8-renegotiate-non-aead-to-non-aead-client-extra
280
281 [8-renegotiate-non-aead-to-non-aead-client-extra]
282 RenegotiateCiphers = AES256-SHA
283
284
285 # ===========================================================
286
287 [9-renegotiate-aead-to-aead]
288 ssl_conf = 9-renegotiate-aead-to-aead-ssl
289
290 [9-renegotiate-aead-to-aead-ssl]
291 server = 9-renegotiate-aead-to-aead-server
292 client = 9-renegotiate-aead-to-aead-client
293
294 [9-renegotiate-aead-to-aead-server]
295 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
296 CipherString = DEFAULT
297 Options = NoResumptionOnRenegotiation
298 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
299
300 [9-renegotiate-aead-to-aead-client]
301 CipherString = AES128-GCM-SHA256
302 MaxProtocol = TLSv1.2
303 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
304 VerifyMode = Peer
305
306 [test-9]
307 ExpectedResult = Success
308 HandshakeMode = RenegotiateClient
309 Method = TLS
310 ResumptionExpected = No
311 client = 9-renegotiate-aead-to-aead-client-extra
312
313 [9-renegotiate-aead-to-aead-client-extra]
314 RenegotiateCiphers = AES256-GCM-SHA384
315
316