{OPK_POP_ERR},
#define OP_C_WRITE_EX2(stream_name, buf, buf_len, flags) \
{OPK_C_WRITE_EX2, (buf), (buf_len), NULL, #stream_name, (flags)},
+#define OP_CHECK2(func, arg1, arg2) \
+ {OPK_CHECK, NULL, (arg1), (func), NULL, (arg2)},
static OSSL_TIME get_time(void *arg)
{
return 1;
}
+static int check_idle_timeout(struct helper *h, struct helper_local *hl);
+
static const struct script_op script_78[] = {
OP_C_SET_ALPN ("ossltest")
OP_CHECK (setup_session, 0)
OP_C_READ_EXPECT (a, "Strawberry", 10)
OP_CHECK (check_got_session_ticket, 0)
+ OP_CHECK2 (check_idle_timeout,
+ SSL_VALUE_CLASS_FEATURE_NEGOTIATED, 30000)
OP_END
};
OP_END
};
+/* 80. Stateless reset detection test */
static QUIC_STATELESS_RESET_TOKEN test_reset_token = {
{ 0xde, 0xad, 0xbe, 0xef, 0xde, 0xad, 0xbe, 0xef, 0xde, 0xad, 0xbe, 0xef,
0xde, 0xad, 0xbe, 0xef }};
+
/*
- * 80. stateless reset
* Generate a packet in the following format:
* https://www.rfc-editor.org/rfc/rfc9000.html#name-stateless-reset
* Stateless Reset {
OP_END
};
+/* 81. Idle timeout configuration */
+static int modify_idle_timeout(struct helper *h, struct helper_local *hl)
+{
+ uint64_t v = 0;
+
+ /* Test bad value is rejected. */
+ if (!TEST_false(SSL_set_feature_request_uint(h->c_conn,
+ SSL_VALUE_QUIC_IDLE_TIMEOUT,
+ (1UL << 62))))
+ return 0;
+
+ /* Set value. */
+ if (!TEST_true(SSL_set_feature_request_uint(h->c_conn,
+ SSL_VALUE_QUIC_IDLE_TIMEOUT,
+ hl->check_op->arg2)))
+ return 0;
+
+ if (!TEST_true(SSL_get_feature_request_uint(h->c_conn,
+ SSL_VALUE_QUIC_IDLE_TIMEOUT,
+ &v)))
+ return 0;
+
+ if (!TEST_uint64_t_eq(v, hl->check_op->arg2))
+ return 0;
+
+ return 1;
+}
+
+static int check_idle_timeout(struct helper *h, struct helper_local *hl)
+{
+ uint64_t v = 0;
+
+ if (!TEST_true(SSL_get_value_uint(h->c_conn, hl->check_op->arg1,
+ SSL_VALUE_QUIC_IDLE_TIMEOUT,
+ &v)))
+ return 0;
+
+ if (!TEST_uint64_t_eq(v, hl->check_op->arg2))
+ return 0;
+
+ return 1;
+}
+
+static const struct script_op script_81[] = {
+ OP_C_SET_ALPN ("ossltest")
+ OP_CHECK (modify_idle_timeout, 25000)
+ OP_C_CONNECT_WAIT ()
+
+ OP_C_SET_DEFAULT_STREAM_MODE(SSL_DEFAULT_STREAM_MODE_NONE)
+
+ OP_CHECK2 (check_idle_timeout,
+ SSL_VALUE_CLASS_FEATURE_PEER_REQUEST, 30000)
+ OP_CHECK2 (check_idle_timeout,
+ SSL_VALUE_CLASS_FEATURE_NEGOTIATED, 25000)
+
+ OP_END
+};
+
+/* 82. Negotiated default idle timeout if not configured */
+static const struct script_op script_82[] = {
+ OP_C_SET_ALPN ("ossltest")
+ OP_C_CONNECT_WAIT ()
+
+ OP_C_SET_DEFAULT_STREAM_MODE(SSL_DEFAULT_STREAM_MODE_NONE)
+
+ OP_CHECK2 (check_idle_timeout,
+ SSL_VALUE_CLASS_FEATURE_PEER_REQUEST, 30000)
+ OP_CHECK2 (check_idle_timeout,
+ SSL_VALUE_CLASS_FEATURE_NEGOTIATED, 30000)
+
+ OP_END
+};
+
+/* 83. No late changes to idle timeout */
+static int cannot_change_idle_timeout(struct helper *h, struct helper_local *hl)
+{
+ uint64_t v = 0;
+
+ if (!TEST_true(SSL_get_feature_request_uint(h->c_conn,
+ SSL_VALUE_QUIC_IDLE_TIMEOUT,
+ &v)))
+ return 0;
+
+ if (!TEST_uint64_t_eq(v, 30000))
+ return 0;
+
+ if (!TEST_false(SSL_set_feature_request_uint(h->c_conn,
+ SSL_VALUE_QUIC_IDLE_TIMEOUT,
+ 5000)))
+ return 0;
+
+ return 1;
+}
+
+static const struct script_op script_83[] = {
+ OP_C_SET_ALPN ("ossltest")
+ OP_C_CONNECT_WAIT ()
+
+ OP_C_SET_DEFAULT_STREAM_MODE(SSL_DEFAULT_STREAM_MODE_NONE)
+
+ OP_CHECK (cannot_change_idle_timeout, 0)
+ OP_CHECK2 (check_idle_timeout,
+ SSL_VALUE_CLASS_FEATURE_PEER_REQUEST, 30000)
+ OP_CHECK2 (check_idle_timeout,
+ SSL_VALUE_CLASS_FEATURE_NEGOTIATED, 30000)
+
+ OP_END
+};
+
static const struct script_op *const scripts[] = {
script_1,
script_2,
script_78,
script_79,
script_80
+ script_81,
+ script_82,
+ script_83
};
static int test_script(int idx)
projects / openssl.git / commitdiff