Add DTLS support to ssltest and wire up some regress tests.

ok miod@
author: jsing <> 2014-06-21 16:48:05 +0000
committer: jsing <> 2014-06-21 16:48:05 +0000
commit: 48daf116bc22f85719fc5d16fb0e632fb74fa73c (patch)
tree: 953cb2b425fdb5148753d804645fdeecebbfe6c0 /src/regress/lib/libssl/ssl/testssl
parent: e4804fdc8d0f321888039d38c6b65d46a68fd89d (diff)
download: openbsd-48daf116bc22f85719fc5d16fb0e632fb74fa73c.tar.gz
openbsd-48daf116bc22f85719fc5d16fb0e632fb74fa73c.tar.bz2
openbsd-48daf116bc22f85719fc5d16fb0e632fb74fa73c.zip
1 files changed, 29 insertions, 1 deletions
diff --git a/src/regress/lib/libssl/ssl/testssl b/src/regress/lib/libssl/ssl/testssl
index ad5624d917..80f3a1c511 100644
--- a/src/regress/lib/libssl/ssl/testssl
+++ b/src/regress/lib/libssl/ssl/testssl
@@ -158,4 +158,32 @@ else
  $ssltest -bio_pair -tls1 -cipher SRP -srpuser test -srppass abc123
 fi
-exit 0
+#
+# DTLS
+#
+echo test dtlsv1
+$ssltest -dtls1 $extra || exit 1
+echo test dtlsv1 with server authentication
+$ssltest -dtls1 -server_auth $CA $extra || exit 1
+echo test dtlsv1 with client authentication
+$ssltest -dtls1 -client_auth $CA $extra || exit 1
+echo test dtlsv1 with both client and server authentication
+$ssltest -dtls1 -server_auth -client_auth $CA $extra || exit 1
+echo "Testing DTLS ciphersuites"
+for protocol in SSLv3; do
+  echo "Testing ciphersuites for $protocol"
+  for cipher in `openssl ciphers "RSA+$protocol" | tr ':' '\n' |
+    grep -v RC4`; do
+    echo "Testing $cipher"
+    $ssltest -cipher $cipher -dtls1
+    if [ $? -ne 0 ] ; then
+          echo "Failed $cipher"
+          exit 1
+    fi
+  done
+done
author	jsing <>	2014-06-21 16:48:05 +0000
committer	jsing <>	2014-06-21 16:48:05 +0000
commit	48daf116bc22f85719fc5d16fb0e632fb74fa73c (patch)
tree	953cb2b425fdb5148753d804645fdeecebbfe6c0 /src/regress/lib/libssl/ssl/testssl
parent	e4804fdc8d0f321888039d38c6b65d46a68fd89d (diff)
download	openbsd-48daf116bc22f85719fc5d16fb0e632fb74fa73c.tar.gz openbsd-48daf116bc22f85719fc5d16fb0e632fb74fa73c.tar.bz2 openbsd-48daf116bc22f85719fc5d16fb0e632fb74fa73c.zip

diff --git a/src/regress/lib/libssl/ssl/testssl b/src/regress/lib/libssl/ssl/testssl index ad5624d917..80f3a1c511 100644 --- a/src/regress/lib/libssl/ssl/testssl +++ b/src/regress/lib/libssl/ssl/testssl
@@ -158,4 +158,32 @@ else
158	$ssltest -bio_pair -tls1 -cipher SRP -srpuser test -srppass abc123	158	$ssltest -bio_pair -tls1 -cipher SRP -srpuser test -srppass abc123
159	fi	159	fi
160		160
161	exit 0	161	#
		162	# DTLS
		163	#
		164
		165	echo test dtlsv1
		166	$ssltest -dtls1 $extra \|\| exit 1
		167
		168	echo test dtlsv1 with server authentication
		169	$ssltest -dtls1 -server_auth $CA $extra \|\| exit 1
		170
		171	echo test dtlsv1 with client authentication
		172	$ssltest -dtls1 -client_auth $CA $extra \|\| exit 1
		173
		174	echo test dtlsv1 with both client and server authentication
		175	$ssltest -dtls1 -server_auth -client_auth $CA $extra \|\| exit 1
		176
		177	echo "Testing DTLS ciphersuites"
		178	for protocol in SSLv3; do
		179	echo "Testing ciphersuites for $protocol"
		180	for cipher in `openssl ciphers "RSA+$protocol" \| tr ':' '\n' \|
		181	grep -v RC4`; do
		182	echo "Testing $cipher"
		183	$ssltest -cipher $cipher -dtls1
		184	if [ $? -ne 0 ] ; then
		185	echo "Failed $cipher"
		186	exit 1
		187	fi
		188	done
		189	done