Add a test for the certificate callback

[openssl.git] / test / cipherlist_test.c
diff --git a/test/cipherlist_test.c b/test/cipherlist_test.c

index 6ec963110e4c160f4c32de7a056344a8f83357ec..5023c1c4875fa4afd1aed34f9203354a1664feaf 100644 (file)
--- a/test/cipherlist_test.c
+++ b/test/cipherlist_test.c
@@ -1,5 +1,5 @@
  /*
  /*
- * Copyright 2016-2017 The OpenSSL Project Authors. All Rights Reserved.
+ * Copyright 2016-2018 The OpenSSL Project Authors. All Rights Reserved.
   *
   * Licensed under the OpenSSL licenses, (the "License");
   * you may not use this file except in compliance with the License.
   *
   * Licensed under the OpenSSL licenses, (the "License");
   * you may not use this file except in compliance with the License.
@@ -18,7 +18,7 @@
  #include <openssl/ssl3.h>
  #include <openssl/tls1.h>
  
  #include <openssl/ssl3.h>
  #include <openssl/tls1.h>
  
-#include <internal/nelem.h>
+#include "internal/nelem.h"
  #include "testutil.h"
  
  typedef struct cipherlist_test_fixture {
  #include "testutil.h"
  
  typedef struct cipherlist_test_fixture {
@@ -63,6 +63,13 @@ static CIPHERLIST_TEST_FIXTURE *set_up(const char *const test_case_name)
   * are currently broken and should be considered mission impossible in libssl.
   */
  static const uint32_t default_ciphers_in_order[] = {
   * are currently broken and should be considered mission impossible in libssl.
   */
  static const uint32_t default_ciphers_in_order[] = {
+#ifndef OPENSSL_NO_TLS1_3
+    TLS1_3_CK_AES_256_GCM_SHA384,
+# if !defined(OPENSSL_NO_CHACHA) && !defined(OPENSSL_NO_POLY1305)
+    TLS1_3_CK_CHACHA20_POLY1305_SHA256,
+# endif
+    TLS1_3_CK_AES_128_GCM_SHA256,
+#endif
  #ifndef OPENSSL_NO_TLS1_2
  # ifndef OPENSSL_NO_EC
      TLS1_CK_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
  #ifndef OPENSSL_NO_TLS1_2
  # ifndef OPENSSL_NO_EC
      TLS1_CK_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
@@ -72,7 +79,7 @@ static const uint32_t default_ciphers_in_order[] = {
      TLS1_CK_DHE_RSA_WITH_AES_256_GCM_SHA384,
  # endif
  
      TLS1_CK_DHE_RSA_WITH_AES_256_GCM_SHA384,
  # endif
  
-# if !defined OPENSSL_NO_CHACHA && !defined OPENSSL_NO_POLY1305
+# if !defined(OPENSSL_NO_CHACHA) && !defined(OPENSSL_NO_POLY1305)
  #  ifndef OPENSSL_NO_EC
      TLS1_CK_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,
      TLS1_CK_ECDHE_RSA_WITH_CHACHA20_POLY1305,
  #  ifndef OPENSSL_NO_EC
      TLS1_CK_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,
      TLS1_CK_ECDHE_RSA_WITH_CHACHA20_POLY1305,
@@ -105,36 +112,37 @@ static const uint32_t default_ciphers_in_order[] = {
  # endif
  #endif  /* !OPENSSL_NO_TLS1_2 */
  
  # endif
  #endif  /* !OPENSSL_NO_TLS1_2 */
  
-#ifndef OPENSSL_NO_EC
+#if !defined(OPENSSL_NO_TLS1_2) || defined(OPENSSL_NO_TLS1_3)
+    /* These won't be usable if TLSv1.3 is available but TLSv1.2 isn't */
+# ifndef OPENSSL_NO_EC
      TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
      TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA,
      TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
      TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA,
-#endif
-#ifndef OPENSSL_NO_DH
+# endif
+ #ifndef OPENSSL_NO_DH
      TLS1_CK_DHE_RSA_WITH_AES_256_SHA,
      TLS1_CK_DHE_RSA_WITH_AES_256_SHA,
-#endif
-#ifndef OPENSSL_NO_EC
+# endif
+# ifndef OPENSSL_NO_EC
      TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
      TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA,
      TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
      TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA,
-#endif
-#ifndef OPENSSL_NO_DH
+# endif
+# ifndef OPENSSL_NO_DH
      TLS1_CK_DHE_RSA_WITH_AES_128_SHA,
      TLS1_CK_DHE_RSA_WITH_AES_128_SHA,
-#endif
+# endif
+#endif /* !defined(OPENSSL_NO_TLS1_2) || defined(OPENSSL_NO_TLS1_3) */
  
  #ifndef OPENSSL_NO_TLS1_2
      TLS1_CK_RSA_WITH_AES_256_GCM_SHA384,
      TLS1_CK_RSA_WITH_AES_128_GCM_SHA256,
  #endif
  
  #ifndef OPENSSL_NO_TLS1_2
      TLS1_CK_RSA_WITH_AES_256_GCM_SHA384,
      TLS1_CK_RSA_WITH_AES_128_GCM_SHA256,
  #endif
-#ifndef OPENSSL_NO_TLS1_3
-    TLS1_3_CK_AES_256_GCM_SHA384,
-    TLS1_3_CK_CHACHA20_POLY1305_SHA256,
-    TLS1_3_CK_AES_128_GCM_SHA256,
-#endif
  #ifndef OPENSSL_NO_TLS1_2
      TLS1_CK_RSA_WITH_AES_256_SHA256,
      TLS1_CK_RSA_WITH_AES_128_SHA256,
  #endif
  #ifndef OPENSSL_NO_TLS1_2
      TLS1_CK_RSA_WITH_AES_256_SHA256,
      TLS1_CK_RSA_WITH_AES_128_SHA256,
  #endif
+#if !defined(OPENSSL_NO_TLS1_2) || defined(OPENSSL_NO_TLS1_3)
+    /* These won't be usable if TLSv1.3 is available but TLSv1.2 isn't */
      TLS1_CK_RSA_WITH_AES_256_SHA,
      TLS1_CK_RSA_WITH_AES_128_SHA,
      TLS1_CK_RSA_WITH_AES_256_SHA,
      TLS1_CK_RSA_WITH_AES_128_SHA,
+#endif
  };
  
  static int test_default_cipherlist(SSL_CTX *ctx)
  };
  
  static int test_default_cipherlist(SSL_CTX *ctx)
@@ -207,7 +215,7 @@ static int test_default_cipherlist_explicit(void)
      return result;
  }
  
      return result;
  }
  
-int setup_tests()
+int setup_tests(void)
  {
      ADD_TEST(test_default_cipherlist_implicit);
      ADD_TEST(test_default_cipherlist_explicit);
  {
      ADD_TEST(test_default_cipherlist_implicit);
      ADD_TEST(test_default_cipherlist_explicit);