mirror of
https://github.com/openssl/openssl.git
synced 2024-11-27 05:21:51 +08:00
310553591c
Also fix the test as min version > max version is allowed because the API calls to set min and max versions are separate and there can be legitimately a temporary situation when the condition is true even with correctly working application. The failure in this condition will be detected only during a handshake attempt. Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10337)
77 lines
2.3 KiB
C
77 lines
2.3 KiB
C
/*
|
|
* Copyright 2018 The OpenSSL Project Authors. All Rights Reserved.
|
|
*
|
|
* Licensed under the OpenSSL license (the "License"). You may not use
|
|
* this file except in compliance with the License. You can obtain a copy
|
|
* in the file LICENSE in the source distribution or at
|
|
* https://www.openssl.org/source/license.html
|
|
*/
|
|
|
|
#include "testutil.h"
|
|
#include <openssl/ssl.h>
|
|
|
|
typedef struct {
|
|
int min_version;
|
|
int max_version;
|
|
int min_ok;
|
|
int max_ok;
|
|
int expected_min;
|
|
int expected_max;
|
|
} version_test;
|
|
|
|
static const version_test version_testdata[] = {
|
|
/* min max ok expected min expected max */
|
|
{0, 0, 1, 1, 0, 0},
|
|
{TLS1_VERSION, TLS1_2_VERSION, 1, 1, TLS1_VERSION, TLS1_2_VERSION},
|
|
{TLS1_2_VERSION, TLS1_2_VERSION, 1, 1, TLS1_2_VERSION, TLS1_2_VERSION},
|
|
{TLS1_2_VERSION, TLS1_1_VERSION, 1, 1, TLS1_2_VERSION, TLS1_1_VERSION},
|
|
{7, 42, 0, 0, 0, 0},
|
|
};
|
|
|
|
static int test_set_min_max_version(int idx_tst)
|
|
{
|
|
SSL_CTX *ctx = NULL;
|
|
SSL *ssl = NULL;
|
|
int testresult = 0;
|
|
version_test t = version_testdata[idx_tst];
|
|
|
|
ctx = SSL_CTX_new(TLS_server_method());
|
|
if (ctx == NULL)
|
|
goto end;
|
|
|
|
ssl = SSL_new(ctx);
|
|
if (ssl == NULL)
|
|
goto end;
|
|
|
|
if (!TEST_int_eq(SSL_CTX_set_min_proto_version(ctx, t.min_version), t.min_ok))
|
|
goto end;
|
|
if (!TEST_int_eq(SSL_CTX_set_max_proto_version(ctx, t.max_version), t.max_ok))
|
|
goto end;
|
|
if (!TEST_int_eq(SSL_CTX_get_min_proto_version(ctx), t.expected_min))
|
|
goto end;
|
|
if (!TEST_int_eq(SSL_CTX_get_max_proto_version(ctx), t.expected_max))
|
|
goto end;
|
|
|
|
if (!TEST_int_eq(SSL_set_min_proto_version(ssl, t.min_version), t.min_ok))
|
|
goto end;
|
|
if (!TEST_int_eq(SSL_set_max_proto_version(ssl, t.max_version), t.max_ok))
|
|
goto end;
|
|
if (!TEST_int_eq(SSL_get_min_proto_version(ssl), t.expected_min))
|
|
goto end;
|
|
if (!TEST_int_eq(SSL_get_max_proto_version(ssl), t.expected_max))
|
|
goto end;
|
|
|
|
testresult = 1;
|
|
|
|
end:
|
|
SSL_free(ssl);
|
|
SSL_CTX_free(ctx);
|
|
return testresult;
|
|
}
|
|
|
|
int setup_tests(void)
|
|
{
|
|
ADD_ALL_TESTS(test_set_min_max_version, sizeof(version_testdata) / sizeof(version_test));
|
|
return 1;
|
|
}
|