Fix no-chacha and no-poly1305
[openssl.git] / test / cipherlist_test.c
1 /*
2  * Copyright 2016-2017 The OpenSSL Project Authors. All Rights Reserved.
3  *
4  * Licensed under the OpenSSL licenses, (the "License");
5  * you may not use this file except in compliance with the License.
6  * You may obtain a copy of the License at
7  * https://www.openssl.org/source/license.html
8  * or in the file LICENSE in the source distribution.
9  */
10
11 #include <stdio.h>
12 #include <string.h>
13
14 #include <openssl/opensslconf.h>
15 #include <openssl/err.h>
16 #include <openssl/e_os2.h>
17 #include <openssl/ssl.h>
18 #include <openssl/ssl3.h>
19 #include <openssl/tls1.h>
20
21 #include "internal/nelem.h"
22 #include "testutil.h"
23
24 typedef struct cipherlist_test_fixture {
25     const char *test_case_name;
26     SSL_CTX *server;
27     SSL_CTX *client;
28 } CIPHERLIST_TEST_FIXTURE;
29
30
31 static void tear_down(CIPHERLIST_TEST_FIXTURE *fixture)
32 {
33     if (fixture != NULL) {
34         SSL_CTX_free(fixture->server);
35         SSL_CTX_free(fixture->client);
36         fixture->server = fixture->client = NULL;
37         OPENSSL_free(fixture);
38     }
39 }
40
41 static CIPHERLIST_TEST_FIXTURE *set_up(const char *const test_case_name)
42 {
43     CIPHERLIST_TEST_FIXTURE *fixture;
44
45     if (!TEST_ptr(fixture = OPENSSL_zalloc(sizeof(*fixture))))
46         return NULL;
47     fixture->test_case_name = test_case_name;
48     if (!TEST_ptr(fixture->server = SSL_CTX_new(TLS_server_method()))
49             || !TEST_ptr(fixture->client = SSL_CTX_new(TLS_client_method()))) {
50         tear_down(fixture);
51         return NULL;
52     }
53     return fixture;
54 }
55
56 /*
57  * All ciphers in the DEFAULT cipherlist meet the default security level.
58  * However, default supported ciphers exclude SRP and PSK ciphersuites
59  * for which no callbacks have been set up.
60  *
61  * Supported ciphers also exclude TLSv1.2 ciphers if TLSv1.2 is disabled,
62  * and individual disabled algorithms. However, NO_RSA, NO_AES and NO_SHA
63  * are currently broken and should be considered mission impossible in libssl.
64  */
65 static const uint32_t default_ciphers_in_order[] = {
66 #ifndef OPENSSL_NO_TLS1_2
67 # ifndef OPENSSL_NO_EC
68     TLS1_CK_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
69     TLS1_CK_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
70 # endif
71 # ifndef OPENSSL_NO_DH
72     TLS1_CK_DHE_RSA_WITH_AES_256_GCM_SHA384,
73 # endif
74
75 # if !defined(OPENSSL_NO_CHACHA) && !defined(OPENSSL_NO_POLY1305)
76 #  ifndef OPENSSL_NO_EC
77     TLS1_CK_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,
78     TLS1_CK_ECDHE_RSA_WITH_CHACHA20_POLY1305,
79 #  endif
80 #  ifndef OPENSSL_NO_DH
81     TLS1_CK_DHE_RSA_WITH_CHACHA20_POLY1305,
82 #  endif
83 # endif  /* !OPENSSL_NO_CHACHA && !OPENSSL_NO_POLY1305 */
84
85 # ifndef OPENSSL_NO_EC
86     TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
87     TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
88 # endif
89 # ifndef OPENSSL_NO_DH
90     TLS1_CK_DHE_RSA_WITH_AES_128_GCM_SHA256,
91 # endif
92 # ifndef OPENSSL_NO_EC
93     TLS1_CK_ECDHE_ECDSA_WITH_AES_256_SHA384,
94     TLS1_CK_ECDHE_RSA_WITH_AES_256_SHA384,
95 # endif
96 # ifndef OPENSSL_NO_DH
97     TLS1_CK_DHE_RSA_WITH_AES_256_SHA256,
98 # endif
99 # ifndef OPENSSL_NO_EC
100     TLS1_CK_ECDHE_ECDSA_WITH_AES_128_SHA256,
101     TLS1_CK_ECDHE_RSA_WITH_AES_128_SHA256,
102 # endif
103 # ifndef OPENSSL_NO_DH
104     TLS1_CK_DHE_RSA_WITH_AES_128_SHA256,
105 # endif
106 #endif  /* !OPENSSL_NO_TLS1_2 */
107
108 #ifndef OPENSSL_NO_EC
109     TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
110     TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA,
111 #endif
112 #ifndef OPENSSL_NO_DH
113     TLS1_CK_DHE_RSA_WITH_AES_256_SHA,
114 #endif
115 #ifndef OPENSSL_NO_EC
116     TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
117     TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA,
118 #endif
119 #ifndef OPENSSL_NO_DH
120     TLS1_CK_DHE_RSA_WITH_AES_128_SHA,
121 #endif
122
123 #ifndef OPENSSL_NO_TLS1_2
124     TLS1_CK_RSA_WITH_AES_256_GCM_SHA384,
125     TLS1_CK_RSA_WITH_AES_128_GCM_SHA256,
126 #endif
127 #ifndef OPENSSL_NO_TLS1_3
128     TLS1_3_CK_AES_256_GCM_SHA384,
129 # if !defined(OPENSSL_NO_CHACHA) && !defined(OPENSSL_NO_POLY1305)
130     TLS1_3_CK_CHACHA20_POLY1305_SHA256,
131 # endif
132     TLS1_3_CK_AES_128_GCM_SHA256,
133 #endif
134 #ifndef OPENSSL_NO_TLS1_2
135     TLS1_CK_RSA_WITH_AES_256_SHA256,
136     TLS1_CK_RSA_WITH_AES_128_SHA256,
137 #endif
138     TLS1_CK_RSA_WITH_AES_256_SHA,
139     TLS1_CK_RSA_WITH_AES_128_SHA,
140 };
141
142 static int test_default_cipherlist(SSL_CTX *ctx)
143 {
144     STACK_OF(SSL_CIPHER) *ciphers = NULL;
145     SSL *ssl = NULL;
146     int i, ret = 0, num_expected_ciphers, num_ciphers;
147     uint32_t expected_cipher_id, cipher_id;
148
149     if (ctx == NULL)
150         return 0;
151
152     if (!TEST_ptr(ssl = SSL_new(ctx))
153             || !TEST_ptr(ciphers = SSL_get1_supported_ciphers(ssl)))
154         goto err;
155
156     num_expected_ciphers = OSSL_NELEM(default_ciphers_in_order);
157     num_ciphers = sk_SSL_CIPHER_num(ciphers);
158     if (!TEST_int_eq(num_ciphers, num_expected_ciphers))
159         goto err;
160
161     for (i = 0; i < num_ciphers; i++) {
162         expected_cipher_id = default_ciphers_in_order[i];
163         cipher_id = SSL_CIPHER_get_id(sk_SSL_CIPHER_value(ciphers, i));
164         if (!TEST_int_eq(cipher_id, expected_cipher_id)) {
165             TEST_info("Wrong cipher at position %d", i);
166             goto err;
167         }
168     }
169
170     ret = 1;
171
172  err:
173     sk_SSL_CIPHER_free(ciphers);
174     SSL_free(ssl);
175     return ret;
176 }
177
178 static int execute_test(CIPHERLIST_TEST_FIXTURE *fixture)
179 {
180     return fixture != NULL
181         && test_default_cipherlist(fixture->server)
182         && test_default_cipherlist(fixture->client);
183 }
184
185 #define SETUP_CIPHERLIST_TEST_FIXTURE() \
186     SETUP_TEST_FIXTURE(CIPHERLIST_TEST_FIXTURE, set_up)
187
188 #define EXECUTE_CIPHERLIST_TEST() \
189     EXECUTE_TEST(execute_test, tear_down)
190
191 static int test_default_cipherlist_implicit(void)
192 {
193     SETUP_CIPHERLIST_TEST_FIXTURE();
194     if (fixture == NULL)
195         return 0;
196     EXECUTE_CIPHERLIST_TEST();
197     return result;
198 }
199
200 static int test_default_cipherlist_explicit(void)
201 {
202     SETUP_CIPHERLIST_TEST_FIXTURE();
203     if (fixture == NULL)
204         return 0;
205     if (!TEST_true(SSL_CTX_set_cipher_list(fixture->server, "DEFAULT"))
206             || !TEST_true(SSL_CTX_set_cipher_list(fixture->client, "DEFAULT")))
207         tear_down(fixture);
208     EXECUTE_CIPHERLIST_TEST();
209     return result;
210 }
211
212 int setup_tests()
213 {
214     ADD_TEST(test_default_cipherlist_implicit);
215     ADD_TEST(test_default_cipherlist_explicit);
216     return 1;
217 }