projects / openssl.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Start using the key_share data to derive the PMS
[openssl.git] / test / ssl-tests / 08-npn.conf
1 # Generated with generate_ssl_tests.pl
2
3 num_tests = 20
4
5 test-0 = 0-npn-simple
6 test-1 = 1-npn-client-finds-match
7 test-2 = 2-npn-client-honours-server-pref
8 test-3 = 3-npn-client-first-pref-on-mismatch
9 test-4 = 4-npn-no-server-support
10 test-5 = 5-npn-no-client-support
11 test-6 = 6-npn-with-sni-no-context-switch
12 test-7 = 7-npn-with-sni-context-switch
13 test-8 = 8-npn-selected-sni-server-supports-npn
14 test-9 = 9-npn-selected-sni-server-does-not-support-npn
15 test-10 = 10-alpn-preferred-over-npn
16 test-11 = 11-sni-npn-preferred-over-alpn
17 test-12 = 12-npn-simple-resumption
18 test-13 = 13-npn-server-switch-resumption
19 test-14 = 14-npn-client-switch-resumption
20 test-15 = 15-npn-client-first-pref-on-mismatch-resumption
21 test-16 = 16-npn-no-server-support-resumption
22 test-17 = 17-npn-no-client-support-resumption
23 test-18 = 18-alpn-preferred-over-npn-resumption
24 test-19 = 19-npn-used-if-alpn-not-supported-resumption
25 # ===========================================================
26
27 [0-npn-simple]
28 ssl_conf = 0-npn-simple-ssl
29
30 [0-npn-simple-ssl]
31 server = 0-npn-simple-server
32 client = 0-npn-simple-client
33
34 [0-npn-simple-server]
35 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
36 CipherString = DEFAULT
37 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
38
39 [0-npn-simple-client]
40 CipherString = DEFAULT
41 MaxProtocol = TLSv1.2
42 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
43 VerifyMode = Peer
44
45 [test-0]
46 ExpectedNPNProtocol = foo
47 server = 0-npn-simple-server-extra
48 client = 0-npn-simple-client-extra
49
50 [0-npn-simple-server-extra]
51 NPNProtocols = foo
52
53 [0-npn-simple-client-extra]
54 NPNProtocols = foo
55
56
57 # ===========================================================
58
59 [1-npn-client-finds-match]
60 ssl_conf = 1-npn-client-finds-match-ssl
61
62 [1-npn-client-finds-match-ssl]
63 server = 1-npn-client-finds-match-server
64 client = 1-npn-client-finds-match-client
65
66 [1-npn-client-finds-match-server]
67 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
68 CipherString = DEFAULT
69 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
70
71 [1-npn-client-finds-match-client]
72 CipherString = DEFAULT
73 MaxProtocol = TLSv1.2
74 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
75 VerifyMode = Peer
76
77 [test-1]
78 ExpectedNPNProtocol = bar
79 server = 1-npn-client-finds-match-server-extra
80 client = 1-npn-client-finds-match-client-extra
81
82 [1-npn-client-finds-match-server-extra]
83 NPNProtocols = baz,bar
84
85 [1-npn-client-finds-match-client-extra]
86 NPNProtocols = foo,bar
87
88
89 # ===========================================================
90
91 [2-npn-client-honours-server-pref]
92 ssl_conf = 2-npn-client-honours-server-pref-ssl
93
94 [2-npn-client-honours-server-pref-ssl]
95 server = 2-npn-client-honours-server-pref-server
96 client = 2-npn-client-honours-server-pref-client
97
98 [2-npn-client-honours-server-pref-server]
99 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
100 CipherString = DEFAULT
101 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
102
103 [2-npn-client-honours-server-pref-client]
104 CipherString = DEFAULT
105 MaxProtocol = TLSv1.2
106 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
107 VerifyMode = Peer
108
109 [test-2]
110 ExpectedNPNProtocol = bar
111 server = 2-npn-client-honours-server-pref-server-extra
112 client = 2-npn-client-honours-server-pref-client-extra
113
114 [2-npn-client-honours-server-pref-server-extra]
115 NPNProtocols = bar,foo
116
117 [2-npn-client-honours-server-pref-client-extra]
118 NPNProtocols = foo,bar
119
120
121 # ===========================================================
122
123 [3-npn-client-first-pref-on-mismatch]
124 ssl_conf = 3-npn-client-first-pref-on-mismatch-ssl
125
126 [3-npn-client-first-pref-on-mismatch-ssl]
127 server = 3-npn-client-first-pref-on-mismatch-server
128 client = 3-npn-client-first-pref-on-mismatch-client
129
130 [3-npn-client-first-pref-on-mismatch-server]
131 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
132 CipherString = DEFAULT
133 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
134
135 [3-npn-client-first-pref-on-mismatch-client]
136 CipherString = DEFAULT
137 MaxProtocol = TLSv1.2
138 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
139 VerifyMode = Peer
140
141 [test-3]
142 ExpectedNPNProtocol = foo
143 server = 3-npn-client-first-pref-on-mismatch-server-extra
144 client = 3-npn-client-first-pref-on-mismatch-client-extra
145
146 [3-npn-client-first-pref-on-mismatch-server-extra]
147 NPNProtocols = baz
148
149 [3-npn-client-first-pref-on-mismatch-client-extra]
150 NPNProtocols = foo,bar
151
152
153 # ===========================================================
154
155 [4-npn-no-server-support]
156 ssl_conf = 4-npn-no-server-support-ssl
157
158 [4-npn-no-server-support-ssl]
159 server = 4-npn-no-server-support-server
160 client = 4-npn-no-server-support-client
161
162 [4-npn-no-server-support-server]
163 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
164 CipherString = DEFAULT
165 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
166
167 [4-npn-no-server-support-client]
168 CipherString = DEFAULT
169 MaxProtocol = TLSv1.2
170 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
171 VerifyMode = Peer
172
173 [test-4]
174 client = 4-npn-no-server-support-client-extra
175
176 [4-npn-no-server-support-client-extra]
177 NPNProtocols = foo
178
179
180 # ===========================================================
181
182 [5-npn-no-client-support]
183 ssl_conf = 5-npn-no-client-support-ssl
184
185 [5-npn-no-client-support-ssl]
186 server = 5-npn-no-client-support-server
187 client = 5-npn-no-client-support-client
188
189 [5-npn-no-client-support-server]
190 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
191 CipherString = DEFAULT
192 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
193
194 [5-npn-no-client-support-client]
195 CipherString = DEFAULT
196 MaxProtocol = TLSv1.2
197 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
198 VerifyMode = Peer
199
200 [test-5]
201 server = 5-npn-no-client-support-server-extra
202
203 [5-npn-no-client-support-server-extra]
204 NPNProtocols = foo
205
206
207 # ===========================================================
208
209 [6-npn-with-sni-no-context-switch]
210 ssl_conf = 6-npn-with-sni-no-context-switch-ssl
211
212 [6-npn-with-sni-no-context-switch-ssl]
213 server = 6-npn-with-sni-no-context-switch-server
214 client = 6-npn-with-sni-no-context-switch-client
215 server2 = 6-npn-with-sni-no-context-switch-server2
216
217 [6-npn-with-sni-no-context-switch-server]
218 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
219 CipherString = DEFAULT
220 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
221
222 [6-npn-with-sni-no-context-switch-server2]
223 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
224 CipherString = DEFAULT
225 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
226
227 [6-npn-with-sni-no-context-switch-client]
228 CipherString = DEFAULT
229 MaxProtocol = TLSv1.2
230 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
231 VerifyMode = Peer
232
233 [test-6]
234 ExpectedNPNProtocol = foo
235 ExpectedServerName = server1
236 server = 6-npn-with-sni-no-context-switch-server-extra
237 server2 = 6-npn-with-sni-no-context-switch-server2-extra
238 client = 6-npn-with-sni-no-context-switch-client-extra
239
240 [6-npn-with-sni-no-context-switch-server-extra]
241 NPNProtocols = foo
242 ServerNameCallback = IgnoreMismatch
243
244 [6-npn-with-sni-no-context-switch-server2-extra]
245 NPNProtocols = bar
246
247 [6-npn-with-sni-no-context-switch-client-extra]
248 NPNProtocols = foo,bar
249 ServerName = server1
250
251
252 # ===========================================================
253
254 [7-npn-with-sni-context-switch]
255 ssl_conf = 7-npn-with-sni-context-switch-ssl
256
257 [7-npn-with-sni-context-switch-ssl]
258 server = 7-npn-with-sni-context-switch-server
259 client = 7-npn-with-sni-context-switch-client
260 server2 = 7-npn-with-sni-context-switch-server2
261
262 [7-npn-with-sni-context-switch-server]
263 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
264 CipherString = DEFAULT
265 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
266
267 [7-npn-with-sni-context-switch-server2]
268 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
269 CipherString = DEFAULT
270 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
271
272 [7-npn-with-sni-context-switch-client]
273 CipherString = DEFAULT
274 MaxProtocol = TLSv1.2
275 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
276 VerifyMode = Peer
277
278 [test-7]
279 ExpectedNPNProtocol = bar
280 ExpectedServerName = server2
281 server = 7-npn-with-sni-context-switch-server-extra
282 server2 = 7-npn-with-sni-context-switch-server2-extra
283 client = 7-npn-with-sni-context-switch-client-extra
284
285 [7-npn-with-sni-context-switch-server-extra]
286 NPNProtocols = foo
287 ServerNameCallback = IgnoreMismatch
288
289 [7-npn-with-sni-context-switch-server2-extra]
290 NPNProtocols = bar
291
292 [7-npn-with-sni-context-switch-client-extra]
293 NPNProtocols = foo,bar
294 ServerName = server2
295
296
297 # ===========================================================
298
299 [8-npn-selected-sni-server-supports-npn]
300 ssl_conf = 8-npn-selected-sni-server-supports-npn-ssl
301
302 [8-npn-selected-sni-server-supports-npn-ssl]
303 server = 8-npn-selected-sni-server-supports-npn-server
304 client = 8-npn-selected-sni-server-supports-npn-client
305 server2 = 8-npn-selected-sni-server-supports-npn-server2
306
307 [8-npn-selected-sni-server-supports-npn-server]
308 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
309 CipherString = DEFAULT
310 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
311
312 [8-npn-selected-sni-server-supports-npn-server2]
313 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
314 CipherString = DEFAULT
315 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
316
317 [8-npn-selected-sni-server-supports-npn-client]
318 CipherString = DEFAULT
319 MaxProtocol = TLSv1.2
320 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
321 VerifyMode = Peer
322
323 [test-8]
324 ExpectedNPNProtocol = bar
325 ExpectedServerName = server2
326 server = 8-npn-selected-sni-server-supports-npn-server-extra
327 server2 = 8-npn-selected-sni-server-supports-npn-server2-extra
328 client = 8-npn-selected-sni-server-supports-npn-client-extra
329
330 [8-npn-selected-sni-server-supports-npn-server-extra]
331 ServerNameCallback = IgnoreMismatch
332
333 [8-npn-selected-sni-server-supports-npn-server2-extra]
334 NPNProtocols = bar
335
336 [8-npn-selected-sni-server-supports-npn-client-extra]
337 NPNProtocols = foo,bar
338 ServerName = server2
339
340
341 # ===========================================================
342
343 [9-npn-selected-sni-server-does-not-support-npn]
344 ssl_conf = 9-npn-selected-sni-server-does-not-support-npn-ssl
345
346 [9-npn-selected-sni-server-does-not-support-npn-ssl]
347 server = 9-npn-selected-sni-server-does-not-support-npn-server
348 client = 9-npn-selected-sni-server-does-not-support-npn-client
349 server2 = 9-npn-selected-sni-server-does-not-support-npn-server2
350
351 [9-npn-selected-sni-server-does-not-support-npn-server]
352 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
353 CipherString = DEFAULT
354 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
355
356 [9-npn-selected-sni-server-does-not-support-npn-server2]
357 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
358 CipherString = DEFAULT
359 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
360
361 [9-npn-selected-sni-server-does-not-support-npn-client]
362 CipherString = DEFAULT
363 MaxProtocol = TLSv1.2
364 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
365 VerifyMode = Peer
366
367 [test-9]
368 ExpectedServerName = server2
369 server = 9-npn-selected-sni-server-does-not-support-npn-server-extra
370 client = 9-npn-selected-sni-server-does-not-support-npn-client-extra
371
372 [9-npn-selected-sni-server-does-not-support-npn-server-extra]
373 NPNProtocols = bar
374 ServerNameCallback = IgnoreMismatch
375
376 [9-npn-selected-sni-server-does-not-support-npn-client-extra]
377 NPNProtocols = foo,bar
378 ServerName = server2
379
380
381 # ===========================================================
382
383 [10-alpn-preferred-over-npn]
384 ssl_conf = 10-alpn-preferred-over-npn-ssl
385
386 [10-alpn-preferred-over-npn-ssl]
387 server = 10-alpn-preferred-over-npn-server
388 client = 10-alpn-preferred-over-npn-client
389
390 [10-alpn-preferred-over-npn-server]
391 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
392 CipherString = DEFAULT
393 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
394
395 [10-alpn-preferred-over-npn-client]
396 CipherString = DEFAULT
397 MaxProtocol = TLSv1.2
398 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
399 VerifyMode = Peer
400
401 [test-10]
402 ExpectedALPNProtocol = foo
403 server = 10-alpn-preferred-over-npn-server-extra
404 client = 10-alpn-preferred-over-npn-client-extra
405
406 [10-alpn-preferred-over-npn-server-extra]
407 ALPNProtocols = foo
408 NPNProtocols = bar
409
410 [10-alpn-preferred-over-npn-client-extra]
411 ALPNProtocols = foo
412 NPNProtocols = bar
413
414
415 # ===========================================================
416
417 [11-sni-npn-preferred-over-alpn]
418 ssl_conf = 11-sni-npn-preferred-over-alpn-ssl
419
420 [11-sni-npn-preferred-over-alpn-ssl]
421 server = 11-sni-npn-preferred-over-alpn-server
422 client = 11-sni-npn-preferred-over-alpn-client
423 server2 = 11-sni-npn-preferred-over-alpn-server2
424
425 [11-sni-npn-preferred-over-alpn-server]
426 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
427 CipherString = DEFAULT
428 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
429
430 [11-sni-npn-preferred-over-alpn-server2]
431 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
432 CipherString = DEFAULT
433 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
434
435 [11-sni-npn-preferred-over-alpn-client]
436 CipherString = DEFAULT
437 MaxProtocol = TLSv1.2
438 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
439 VerifyMode = Peer
440
441 [test-11]
442 ExpectedNPNProtocol = bar
443 ExpectedServerName = server2
444 server = 11-sni-npn-preferred-over-alpn-server-extra
445 server2 = 11-sni-npn-preferred-over-alpn-server2-extra
446 client = 11-sni-npn-preferred-over-alpn-client-extra
447
448 [11-sni-npn-preferred-over-alpn-server-extra]
449 ALPNProtocols = foo
450 ServerNameCallback = IgnoreMismatch
451
452 [11-sni-npn-preferred-over-alpn-server2-extra]
453 NPNProtocols = bar
454
455 [11-sni-npn-preferred-over-alpn-client-extra]
456 ALPNProtocols = foo
457 NPNProtocols = bar
458 ServerName = server2
459
460
461 # ===========================================================
462
463 [12-npn-simple-resumption]
464 ssl_conf = 12-npn-simple-resumption-ssl
465
466 [12-npn-simple-resumption-ssl]
467 server = 12-npn-simple-resumption-server
468 client = 12-npn-simple-resumption-client
469 resume-server = 12-npn-simple-resumption-server
470 resume-client = 12-npn-simple-resumption-client
471
472 [12-npn-simple-resumption-server]
473 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
474 CipherString = DEFAULT
475 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
476
477 [12-npn-simple-resumption-client]
478 CipherString = DEFAULT
479 MaxProtocol = TLSv1.2
480 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
481 VerifyMode = Peer
482
483 [test-12]
484 ExpectedNPNProtocol = foo
485 HandshakeMode = Resume
486 ResumptionExpected = Yes
487 server = 12-npn-simple-resumption-server-extra
488 resume-server = 12-npn-simple-resumption-server-extra
489 client = 12-npn-simple-resumption-client-extra
490 resume-client = 12-npn-simple-resumption-client-extra
491
492 [12-npn-simple-resumption-server-extra]
493 NPNProtocols = foo
494
495 [12-npn-simple-resumption-client-extra]
496 NPNProtocols = foo
497
498
499 # ===========================================================
500
501 [13-npn-server-switch-resumption]
502 ssl_conf = 13-npn-server-switch-resumption-ssl
503
504 [13-npn-server-switch-resumption-ssl]
505 server = 13-npn-server-switch-resumption-server
506 client = 13-npn-server-switch-resumption-client
507 resume-server = 13-npn-server-switch-resumption-resume-server
508 resume-client = 13-npn-server-switch-resumption-client
509
510 [13-npn-server-switch-resumption-server]
511 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
512 CipherString = DEFAULT
513 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
514
515 [13-npn-server-switch-resumption-resume-server]
516 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
517 CipherString = DEFAULT
518 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
519
520 [13-npn-server-switch-resumption-client]
521 CipherString = DEFAULT
522 MaxProtocol = TLSv1.2
523 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
524 VerifyMode = Peer
525
526 [test-13]
527 ExpectedNPNProtocol = baz
528 HandshakeMode = Resume
529 ResumptionExpected = Yes
530 server = 13-npn-server-switch-resumption-server-extra
531 resume-server = 13-npn-server-switch-resumption-resume-server-extra
532 client = 13-npn-server-switch-resumption-client-extra
533 resume-client = 13-npn-server-switch-resumption-client-extra
534
535 [13-npn-server-switch-resumption-server-extra]
536 NPNProtocols = bar,foo
537
538 [13-npn-server-switch-resumption-resume-server-extra]
539 NPNProtocols = baz,foo
540
541 [13-npn-server-switch-resumption-client-extra]
542 NPNProtocols = foo,bar,baz
543
544
545 # ===========================================================
546
547 [14-npn-client-switch-resumption]
548 ssl_conf = 14-npn-client-switch-resumption-ssl
549
550 [14-npn-client-switch-resumption-ssl]
551 server = 14-npn-client-switch-resumption-server
552 client = 14-npn-client-switch-resumption-client
553 resume-server = 14-npn-client-switch-resumption-server
554 resume-client = 14-npn-client-switch-resumption-resume-client
555
556 [14-npn-client-switch-resumption-server]
557 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
558 CipherString = DEFAULT
559 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
560
561 [14-npn-client-switch-resumption-client]
562 CipherString = DEFAULT
563 MaxProtocol = TLSv1.2
564 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
565 VerifyMode = Peer
566
567 [14-npn-client-switch-resumption-resume-client]
568 CipherString = DEFAULT
569 MaxProtocol = TLSv1.2
570 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
571 VerifyMode = Peer
572
573 [test-14]
574 ExpectedNPNProtocol = bar
575 HandshakeMode = Resume
576 ResumptionExpected = Yes
577 server = 14-npn-client-switch-resumption-server-extra
578 resume-server = 14-npn-client-switch-resumption-server-extra
579 client = 14-npn-client-switch-resumption-client-extra
580 resume-client = 14-npn-client-switch-resumption-resume-client-extra
581
582 [14-npn-client-switch-resumption-server-extra]
583 NPNProtocols = foo,bar,baz
584
585 [14-npn-client-switch-resumption-client-extra]
586 NPNProtocols = foo,baz
587
588 [14-npn-client-switch-resumption-resume-client-extra]
589 NPNProtocols = bar,baz
590
591
592 # ===========================================================
593
594 [15-npn-client-first-pref-on-mismatch-resumption]
595 ssl_conf = 15-npn-client-first-pref-on-mismatch-resumption-ssl
596
597 [15-npn-client-first-pref-on-mismatch-resumption-ssl]
598 server = 15-npn-client-first-pref-on-mismatch-resumption-server
599 client = 15-npn-client-first-pref-on-mismatch-resumption-client
600 resume-server = 15-npn-client-first-pref-on-mismatch-resumption-resume-server
601 resume-client = 15-npn-client-first-pref-on-mismatch-resumption-client
602
603 [15-npn-client-first-pref-on-mismatch-resumption-server]
604 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
605 CipherString = DEFAULT
606 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
607
608 [15-npn-client-first-pref-on-mismatch-resumption-resume-server]
609 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
610 CipherString = DEFAULT
611 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
612
613 [15-npn-client-first-pref-on-mismatch-resumption-client]
614 CipherString = DEFAULT
615 MaxProtocol = TLSv1.2
616 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
617 VerifyMode = Peer
618
619 [test-15]
620 ExpectedNPNProtocol = foo
621 HandshakeMode = Resume
622 ResumptionExpected = Yes
623 server = 15-npn-client-first-pref-on-mismatch-resumption-server-extra
624 resume-server = 15-npn-client-first-pref-on-mismatch-resumption-resume-server-extra
625 client = 15-npn-client-first-pref-on-mismatch-resumption-client-extra
626 resume-client = 15-npn-client-first-pref-on-mismatch-resumption-client-extra
627
628 [15-npn-client-first-pref-on-mismatch-resumption-server-extra]
629 NPNProtocols = bar
630
631 [15-npn-client-first-pref-on-mismatch-resumption-resume-server-extra]
632 NPNProtocols = baz
633
634 [15-npn-client-first-pref-on-mismatch-resumption-client-extra]
635 NPNProtocols = foo,bar
636
637
638 # ===========================================================
639
640 [16-npn-no-server-support-resumption]
641 ssl_conf = 16-npn-no-server-support-resumption-ssl
642
643 [16-npn-no-server-support-resumption-ssl]
644 server = 16-npn-no-server-support-resumption-server
645 client = 16-npn-no-server-support-resumption-client
646 resume-server = 16-npn-no-server-support-resumption-resume-server
647 resume-client = 16-npn-no-server-support-resumption-client
648
649 [16-npn-no-server-support-resumption-server]
650 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
651 CipherString = DEFAULT
652 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
653
654 [16-npn-no-server-support-resumption-resume-server]
655 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
656 CipherString = DEFAULT
657 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
658
659 [16-npn-no-server-support-resumption-client]
660 CipherString = DEFAULT
661 MaxProtocol = TLSv1.2
662 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
663 VerifyMode = Peer
664
665 [test-16]
666 HandshakeMode = Resume
667 ResumptionExpected = Yes
668 server = 16-npn-no-server-support-resumption-server-extra
669 client = 16-npn-no-server-support-resumption-client-extra
670 resume-client = 16-npn-no-server-support-resumption-client-extra
671
672 [16-npn-no-server-support-resumption-server-extra]
673 NPNProtocols = foo
674
675 [16-npn-no-server-support-resumption-client-extra]
676 NPNProtocols = foo
677
678
679 # ===========================================================
680
681 [17-npn-no-client-support-resumption]
682 ssl_conf = 17-npn-no-client-support-resumption-ssl
683
684 [17-npn-no-client-support-resumption-ssl]
685 server = 17-npn-no-client-support-resumption-server
686 client = 17-npn-no-client-support-resumption-client
687 resume-server = 17-npn-no-client-support-resumption-server
688 resume-client = 17-npn-no-client-support-resumption-resume-client
689
690 [17-npn-no-client-support-resumption-server]
691 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
692 CipherString = DEFAULT
693 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
694
695 [17-npn-no-client-support-resumption-client]
696 CipherString = DEFAULT
697 MaxProtocol = TLSv1.2
698 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
699 VerifyMode = Peer
700
701 [17-npn-no-client-support-resumption-resume-client]
702 CipherString = DEFAULT
703 MaxProtocol = TLSv1.2
704 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
705 VerifyMode = Peer
706
707 [test-17]
708 HandshakeMode = Resume
709 ResumptionExpected = Yes
710 server = 17-npn-no-client-support-resumption-server-extra
711 resume-server = 17-npn-no-client-support-resumption-server-extra
712 client = 17-npn-no-client-support-resumption-client-extra
713
714 [17-npn-no-client-support-resumption-server-extra]
715 NPNProtocols = foo
716
717 [17-npn-no-client-support-resumption-client-extra]
718 NPNProtocols = foo
719
720
721 # ===========================================================
722
723 [18-alpn-preferred-over-npn-resumption]
724 ssl_conf = 18-alpn-preferred-over-npn-resumption-ssl
725
726 [18-alpn-preferred-over-npn-resumption-ssl]
727 server = 18-alpn-preferred-over-npn-resumption-server
728 client = 18-alpn-preferred-over-npn-resumption-client
729 resume-server = 18-alpn-preferred-over-npn-resumption-resume-server
730 resume-client = 18-alpn-preferred-over-npn-resumption-client
731
732 [18-alpn-preferred-over-npn-resumption-server]
733 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
734 CipherString = DEFAULT
735 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
736
737 [18-alpn-preferred-over-npn-resumption-resume-server]
738 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
739 CipherString = DEFAULT
740 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
741
742 [18-alpn-preferred-over-npn-resumption-client]
743 CipherString = DEFAULT
744 MaxProtocol = TLSv1.2
745 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
746 VerifyMode = Peer
747
748 [test-18]
749 ExpectedALPNProtocol = foo
750 HandshakeMode = Resume
751 ResumptionExpected = Yes
752 server = 18-alpn-preferred-over-npn-resumption-server-extra
753 resume-server = 18-alpn-preferred-over-npn-resumption-resume-server-extra
754 client = 18-alpn-preferred-over-npn-resumption-client-extra
755 resume-client = 18-alpn-preferred-over-npn-resumption-client-extra
756
757 [18-alpn-preferred-over-npn-resumption-server-extra]
758 NPNProtocols = bar
759
760 [18-alpn-preferred-over-npn-resumption-resume-server-extra]
761 ALPNProtocols = foo
762 NPNProtocols = baz
763
764 [18-alpn-preferred-over-npn-resumption-client-extra]
765 ALPNProtocols = foo
766 NPNProtocols = bar,baz
767
768
769 # ===========================================================
770
771 [19-npn-used-if-alpn-not-supported-resumption]
772 ssl_conf = 19-npn-used-if-alpn-not-supported-resumption-ssl
773
774 [19-npn-used-if-alpn-not-supported-resumption-ssl]
775 server = 19-npn-used-if-alpn-not-supported-resumption-server
776 client = 19-npn-used-if-alpn-not-supported-resumption-client
777 resume-server = 19-npn-used-if-alpn-not-supported-resumption-resume-server
778 resume-client = 19-npn-used-if-alpn-not-supported-resumption-client
779
780 [19-npn-used-if-alpn-not-supported-resumption-server]
781 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
782 CipherString = DEFAULT
783 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
784
785 [19-npn-used-if-alpn-not-supported-resumption-resume-server]
786 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
787 CipherString = DEFAULT
788 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
789
790 [19-npn-used-if-alpn-not-supported-resumption-client]
791 CipherString = DEFAULT
792 MaxProtocol = TLSv1.2
793 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
794 VerifyMode = Peer
795
796 [test-19]
797 ExpectedNPNProtocol = baz
798 HandshakeMode = Resume
799 ResumptionExpected = Yes
800 server = 19-npn-used-if-alpn-not-supported-resumption-server-extra
801 resume-server = 19-npn-used-if-alpn-not-supported-resumption-resume-server-extra
802 client = 19-npn-used-if-alpn-not-supported-resumption-client-extra
803 resume-client = 19-npn-used-if-alpn-not-supported-resumption-client-extra
804
805 [19-npn-used-if-alpn-not-supported-resumption-server-extra]
806 ALPNProtocols = foo
807 NPNProtocols = bar
808
809 [19-npn-used-if-alpn-not-supported-resumption-resume-server-extra]
810 NPNProtocols = baz
811
812 [19-npn-used-if-alpn-not-supported-resumption-client-extra]
813 ALPNProtocols = foo
814 NPNProtocols = bar,baz
815
816
Unnamed repository; edit this file 'description' to name the repository.