Google Git
Sign in
android / toolchain / cargo-deny / HEAD / . / android / vendor / rustls-0.21.10 / src / msgs / handshake_test.rs
blob: ee960557233f931cd0d5ca5fb8af63a104101504 [file] [log] [blame]
use crate::dns_name::DnsNameRef;
use crate::enums::{CipherSuite, HandshakeType, ProtocolVersion, SignatureScheme};
use crate::key::Certificate;
use crate::msgs::base::{Payload, PayloadU16, PayloadU24, PayloadU8};
use crate::msgs::codec::{put_u16, Codec, Reader};
use crate::msgs::enums::{
ClientCertificateType, Compression, ECCurveType, ECPointFormat, ExtensionType,
KeyUpdateRequest, NamedGroup, PSKKeyExchangeMode, ServerNameType,
};
use crate::msgs::handshake::{
CertReqExtension, CertificateEntry, CertificateExtension, CertificatePayloadTLS13,
CertificateRequestPayload, CertificateRequestPayloadTLS13, CertificateStatus,
CertificateStatusRequest, ClientExtension, ClientHelloPayload, ClientSessionTicket,
ConvertProtocolNameList, ConvertServerNameList, DistinguishedName, ECDHEServerKeyExchange,
ECParameters, HandshakeMessagePayload, HandshakePayload, HasServerExtensions,
HelloRetryExtension, HelloRetryRequest, KeyShareEntry, NewSessionTicketExtension,
NewSessionTicketPayload, NewSessionTicketPayloadTLS13, PresharedKeyBinder,
PresharedKeyIdentity, PresharedKeyOffer, ProtocolName, Random, Sct, ServerECDHParams,
ServerExtension, ServerHelloPayload, ServerKeyExchangePayload, SessionId, UnknownExtension,
};
use crate::verify::DigitallySignedStruct;
#[test]
fn rejects_short_random() {
let bytes = [0x01; 31];
let mut rd = Reader::init(&bytes);
assert!(Random::read(&mut rd).is_err());
}
#[test]
fn reads_random() {
let bytes = [0x01; 32];
let mut rd = Reader::init(&bytes);
let rnd = Random::read(&mut rd).unwrap();
println!("{:?}", rnd);
assert!(!rd.any_left());
}
#[test]
fn debug_random() {
assert_eq!(
"0101010101010101010101010101010101010101010101010101010101010101",
format!("{:?}", Random::from([1; 32]))
);
}
#[test]
fn rejects_truncated_sessionid() {
let bytes = [32; 32];
let mut rd = Reader::init(&bytes);
assert!(SessionId::read(&mut rd).is_err());
}
#[test]
fn rejects_sessionid_with_bad_length() {
let bytes = [33; 33];
let mut rd = Reader::init(&bytes);
assert!(SessionId::read(&mut rd).is_err());
}
#[test]
fn sessionid_with_different_lengths_are_unequal() {
let a = SessionId::read(&mut Reader::init(&[1u8, 1])).unwrap();
let b = SessionId::read(&mut Reader::init(&[2u8, 1, 2])).unwrap();
assert_ne!(a, b);
}
#[test]
fn accepts_short_sessionid() {
let bytes = [1; 2];
let mut rd = Reader::init(&bytes);
let sess = SessionId::read(&mut rd).unwrap();
println!("{:?}", sess);
assert!(!sess.is_empty());
assert_eq!(sess.len(), 1);
assert!(!rd.any_left());
}
#[test]
fn accepts_empty_sessionid() {
let bytes = [0; 1];
let mut rd = Reader::init(&bytes);
let sess = SessionId::read(&mut rd).unwrap();
println!("{:?}", sess);
assert!(sess.is_empty());
assert_eq!(sess.len(), 0);
assert!(!rd.any_left());
}
#[test]
fn debug_sessionid() {
let bytes = [
32, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1,
1, 1, 1,
];
let mut rd = Reader::init(&bytes);
let sess = SessionId::read(&mut rd).unwrap();
assert_eq!(
"0101010101010101010101010101010101010101010101010101010101010101",
format!("{:?}", sess)
);
}
#[test]
fn can_roundtrip_unknown_client_ext() {
let bytes = [0x12u8, 0x34u8, 0, 3, 1, 2, 3];
let mut rd = Reader::init(&bytes);
let ext = ClientExtension::read(&mut rd).unwrap();
println!("{:?}", ext);
assert_eq!(ext.get_type(), ExtensionType::Unknown(0x1234));
assert_eq!(bytes.to_vec(), ext.get_encoding());
}
#[test]
fn refuses_client_ext_with_unparsed_bytes() {
let bytes = [0x00u8, 0x0b, 0x00, 0x04, 0x02, 0xf8, 0x01, 0x02];
let mut rd = Reader::init(&bytes);
assert!(ClientExtension::read(&mut rd).is_err());
}
#[test]
fn refuses_server_ext_with_unparsed_bytes() {
let bytes = [0x00u8, 0x0b, 0x00, 0x04, 0x02, 0xf8, 0x01, 0x02];
let mut rd = Reader::init(&bytes);
assert!(ServerExtension::read(&mut rd).is_err());
}
#[test]
fn refuses_certificate_ext_with_unparsed_bytes() {
let bytes = [0x00u8, 0x12, 0x00, 0x03, 0x00, 0x00, 0x01];
let mut rd = Reader::init(&bytes);
assert!(CertificateExtension::read(&mut rd).is_err());
}
#[test]
fn refuses_certificate_req_ext_with_unparsed_bytes() {
let bytes = [0x00u8, 0x0d, 0x00, 0x05, 0x00, 0x02, 0x01, 0x02, 0xff];
let mut rd = Reader::init(&bytes);
assert!(CertReqExtension::read(&mut rd).is_err());
}
#[test]
fn refuses_helloreq_ext_with_unparsed_bytes() {
let bytes = [0x00u8, 0x2b, 0x00, 0x03, 0x00, 0x00, 0x01];
let mut rd = Reader::init(&bytes);
assert!(HelloRetryExtension::read(&mut rd).is_err());
}
#[test]
fn refuses_newsessionticket_ext_with_unparsed_bytes() {
let bytes = [0x00u8, 0x2a, 0x00, 0x05, 0x00, 0x00, 0x00, 0x00, 0x01];
let mut rd = Reader::init(&bytes);
assert!(NewSessionTicketExtension::read(&mut rd).is_err());
}
#[test]
fn can_roundtrip_single_sni() {
let bytes = [0, 0, 0, 7, 0, 5, 0, 0, 2, 0x6c, 0x6f];
let mut rd = Reader::init(&bytes);
let ext = ClientExtension::read(&mut rd).unwrap();
println!("{:?}", ext);
assert_eq!(ext.get_type(), ExtensionType::ServerName);
assert_eq!(bytes.to_vec(), ext.get_encoding());
}
#[test]
fn can_round_trip_mixed_case_sni() {
let bytes = [0, 0, 0, 7, 0, 5, 0, 0, 2, 0x4c, 0x6f];
let mut rd = Reader::init(&bytes);
let ext = ClientExtension::read(&mut rd).unwrap();
println!("{:?}", ext);
assert_eq!(ext.get_type(), ExtensionType::ServerName);
assert_eq!(bytes.to_vec(), ext.get_encoding());
}
#[test]
fn can_roundtrip_other_sni_name_types() {
let bytes = [0, 0, 0, 7, 0, 5, 1, 0, 2, 0x6c, 0x6f];
let mut rd = Reader::init(&bytes);
let ext = ClientExtension::read(&mut rd).unwrap();
println!("{:?}", ext);
assert_eq!(ext.get_type(), ExtensionType::ServerName);
assert_eq!(bytes.to_vec(), ext.get_encoding());
}
#[test]
fn get_single_hostname_returns_none_for_other_sni_name_types() {
let bytes = [0, 0, 0, 7, 0, 5, 1, 0, 2, 0x6c, 0x6f];
let mut rd = Reader::init(&bytes);
let ext = ClientExtension::read(&mut rd).unwrap();
println!("{:?}", ext);
assert_eq!(ext.get_type(), ExtensionType::ServerName);
if let ClientExtension::ServerName(snr) = ext {
assert!(!snr.has_duplicate_names_for_type());
assert!(snr.get_single_hostname().is_none());
} else {
unreachable!();
}
}
#[test]
fn can_roundtrip_multiname_sni() {
let bytes = [0, 0, 0, 12, 0, 10, 0, 0, 2, 0x68, 0x69, 0, 0, 2, 0x6c, 0x6f];
let mut rd = Reader::init(&bytes);
let ext = ClientExtension::read(&mut rd).unwrap();
println!("{:?}", ext);
assert_eq!(ext.get_type(), ExtensionType::ServerName);
assert_eq!(bytes.to_vec(), ext.get_encoding());
match ext {
ClientExtension::ServerName(req) => {
assert_eq!(2, req.len());
assert!(req.has_duplicate_names_for_type());
let dns_name = req.get_single_hostname().unwrap();
assert_eq!(dns_name.as_ref(), "hi");
assert_eq!(req[0].typ, ServerNameType::HostName);
assert_eq!(req[1].typ, ServerNameType::HostName);
}
_ => unreachable!(),
}
}
#[test]
fn rejects_truncated_sni() {
let bytes = [0, 0, 0, 1, 0];
assert!(ClientExtension::read(&mut Reader::init(&bytes)).is_err());
let bytes = [0, 0, 0, 2, 0, 1];
assert!(ClientExtension::read(&mut Reader::init(&bytes)).is_err());
let bytes = [0, 0, 0, 3, 0, 1, 0];
assert!(ClientExtension::read(&mut Reader::init(&bytes)).is_err());
let bytes = [0, 0, 0, 4, 0, 2, 0, 0];
assert!(ClientExtension::read(&mut Reader::init(&bytes)).is_err());
let bytes = [0, 0, 0, 5, 0, 3, 0, 0, 0];
assert!(ClientExtension::read(&mut Reader::init(&bytes)).is_err());
let bytes = [0, 0, 0, 5, 0, 3, 0, 0, 1];
assert!(ClientExtension::read(&mut Reader::init(&bytes)).is_err());
let bytes = [0, 0, 0, 6, 0, 4, 0, 0, 2, 0x68];
assert!(ClientExtension::read(&mut Reader::init(&bytes)).is_err());
}
#[test]
fn can_roundtrip_psk_identity() {
let bytes = [0, 0, 0x11, 0x22, 0x33, 0x44];
let psk_id = PresharedKeyIdentity::read(&mut Reader::init(&bytes)).unwrap();
println!("{:?}", psk_id);
assert_eq!(psk_id.obfuscated_ticket_age, 0x11223344);
assert_eq!(psk_id.get_encoding(), bytes.to_vec());
let bytes = [0, 5, 0x1, 0x2, 0x3, 0x4, 0x5, 0x11, 0x22, 0x33, 0x44];
let psk_id = PresharedKeyIdentity::read(&mut Reader::init(&bytes)).unwrap();
println!("{:?}", psk_id);
assert_eq!(psk_id.identity.0, vec![0x1, 0x2, 0x3, 0x4, 0x5]);
assert_eq!(psk_id.obfuscated_ticket_age, 0x11223344);
assert_eq!(psk_id.get_encoding(), bytes.to_vec());
}
#[test]
fn can_roundtrip_psk_offer() {
let bytes = [
0, 7, 0, 1, 0x99, 0x11, 0x22, 0x33, 0x44, 0, 4, 3, 0x01, 0x02, 0x3,
];
let psko = PresharedKeyOffer::read(&mut Reader::init(&bytes)).unwrap();
println!("{:?}", psko);
assert_eq!(psko.identities.len(), 1);
assert_eq!(psko.identities[0].identity.0, vec![0x99]);
assert_eq!(psko.identities[0].obfuscated_ticket_age, 0x11223344);
assert_eq!(psko.binders.len(), 1);
assert_eq!(psko.binders[0].as_ref(), &[1, 2, 3]);
assert_eq!(psko.get_encoding(), bytes.to_vec());
}
#[test]
fn can_roundtrip_certstatusreq_for_ocsp() {
let ext = ClientExtension::CertificateStatusRequest(CertificateStatusRequest::build_ocsp());
println!("{:?}", ext);
let bytes = [
0, 5, // CertificateStatusRequest
0, 11, 1, // OCSP
0, 5, 0, 3, 0, 1, 1, 0, 1, 2,
];
let csr = ClientExtension::read(&mut Reader::init(&bytes)).unwrap();
println!("{:?}", csr);
assert_eq!(csr.get_encoding(), bytes.to_vec());
}
#[test]
fn can_roundtrip_certstatusreq_for_other() {
let bytes = [
0, 5, // CertificateStatusRequest
0, 5, 2, // !OCSP
1, 2, 3, 4,
];
let csr = ClientExtension::read(&mut Reader::init(&bytes)).unwrap();
println!("{:?}", csr);
assert_eq!(csr.get_encoding(), bytes.to_vec());
}
#[test]
fn can_roundtrip_multi_proto() {
let bytes = [0, 16, 0, 8, 0, 6, 2, 0x68, 0x69, 2, 0x6c, 0x6f];
let mut rd = Reader::init(&bytes);
let ext = ClientExtension::read(&mut rd).unwrap();
println!("{:?}", ext);
assert_eq!(ext.get_type(), ExtensionType::ALProtocolNegotiation);
assert_eq!(ext.get_encoding(), bytes.to_vec());
match ext {
ClientExtension::Protocols(prot) => {
assert_eq!(2, prot.len());
assert_eq!(vec![b"hi", b"lo"], prot.to_slices());
assert_eq!(prot.as_single_slice(), None);
}
_ => unreachable!(),
}
}
#[test]
fn can_roundtrip_single_proto() {
let bytes = [0, 16, 0, 5, 0, 3, 2, 0x68, 0x69];
let mut rd = Reader::init(&bytes);
let ext = ClientExtension::read(&mut rd).unwrap();
println!("{:?}", ext);
assert_eq!(ext.get_type(), ExtensionType::ALProtocolNegotiation);
assert_eq!(bytes.to_vec(), ext.get_encoding());
match ext {
ClientExtension::Protocols(prot) => {
assert_eq!(1, prot.len());
assert_eq!(vec![b"hi"], prot.to_slices());
assert_eq!(prot.as_single_slice(), Some(&b"hi"[..]));
}
_ => unreachable!(),
}
}
fn get_sample_clienthellopayload() -> ClientHelloPayload {
ClientHelloPayload {
client_version: ProtocolVersion::TLSv1_2,
random: Random::from([0; 32]),
session_id: SessionId::empty(),
cipher_suites: vec![CipherSuite::TLS_NULL_WITH_NULL_NULL],
compression_methods: vec![Compression::Null],
extensions: vec![
ClientExtension::ECPointFormats(ECPointFormat::SUPPORTED.to_vec()),
ClientExtension::NamedGroups(vec![NamedGroup::X25519]),
ClientExtension::SignatureAlgorithms(vec![SignatureScheme::ECDSA_NISTP256_SHA256]),
ClientExtension::make_sni(DnsNameRef::try_from("hello").unwrap()),
ClientExtension::SessionTicket(ClientSessionTicket::Request),
ClientExtension::SessionTicket(ClientSessionTicket::Offer(Payload(vec![]))),
ClientExtension::Protocols(vec![ProtocolName::from(vec![0])]),
ClientExtension::SupportedVersions(vec![ProtocolVersion::TLSv1_3]),
ClientExtension::KeyShare(vec![KeyShareEntry::new(NamedGroup::X25519, &[1, 2, 3])]),
ClientExtension::PresharedKeyModes(vec![PSKKeyExchangeMode::PSK_DHE_KE]),
ClientExtension::PresharedKey(PresharedKeyOffer {
identities: vec![
PresharedKeyIdentity::new(vec![3, 4, 5], 123456),
PresharedKeyIdentity::new(vec![6, 7, 8], 7891011),
],
binders: vec![
PresharedKeyBinder::from(vec![1, 2, 3]),
PresharedKeyBinder::from(vec![3, 4, 5]),
],
}),
ClientExtension::Cookie(PayloadU16(vec![1, 2, 3])),
ClientExtension::ExtendedMasterSecretRequest,
ClientExtension::CertificateStatusRequest(CertificateStatusRequest::build_ocsp()),
ClientExtension::SignedCertificateTimestampRequest,
ClientExtension::TransportParameters(vec![1, 2, 3]),
ClientExtension::Unknown(UnknownExtension {
typ: ExtensionType::Unknown(12345),
payload: Payload(vec![1, 2, 3]),
}),
],
}
}
#[test]
fn can_print_all_clientextensions() {
println!("client hello {:?}", get_sample_clienthellopayload());
}
#[test]
fn can_clone_all_clientextensions() {
let _ = get_sample_serverhellopayload().extensions;
}
#[test]
fn client_has_duplicate_extensions_works() {
let mut chp = get_sample_clienthellopayload();
assert!(chp.has_duplicate_extension()); // due to SessionTicketRequest/SessionTicketOffer
chp.extensions.drain(1..);
assert!(!chp.has_duplicate_extension());
chp.extensions = vec![];
assert!(!chp.has_duplicate_extension());
}
#[test]
fn test_truncated_psk_offer() {
let ext = ClientExtension::PresharedKey(PresharedKeyOffer {
identities: vec![PresharedKeyIdentity::new(vec![3, 4, 5], 123456)],
binders: vec![PresharedKeyBinder::from(vec![1, 2, 3])],
});
let mut enc = ext.get_encoding();
println!("testing {:?} enc {:?}", ext, enc);
for l in 0..enc.len() {
if l == 9 {
continue;
}
put_u16(l as u16, &mut enc[4..]);
let rc = ClientExtension::read_bytes(&enc);
assert!(rc.is_err());
}
}
#[test]
fn test_truncated_client_hello_is_detected() {
let ch = get_sample_clienthellopayload();
let enc = ch.get_encoding();
println!("testing {:?} enc {:?}", ch, enc);
for l in 0..enc.len() {
println!("len {:?} enc {:?}", l, &enc[..l]);
if l == 41 {
continue; // where extensions are empty
}
assert!(ClientHelloPayload::read_bytes(&enc[..l]).is_err());
}
}
#[test]
fn test_truncated_client_extension_is_detected() {
let chp = get_sample_clienthellopayload();
for ext in &chp.extensions {
let mut enc = ext.get_encoding();
println!("testing {:?} enc {:?}", ext, enc);
// "outer" truncation, i.e., where the extension-level length is longer than
// the input
for l in 0..enc.len() {
assert!(ClientExtension::read_bytes(&enc[..l]).is_err());
}
// these extension types don't have any internal encoding that rustls validates:
match ext.get_type() {
ExtensionType::TransportParameters | ExtensionType::Unknown(_) => {
continue;
}
_ => {}
};
// "inner" truncation, where the extension-level length agrees with the input
// length, but isn't long enough for the type of extension
for l in 0..(enc.len() - 4) {
put_u16(l as u16, &mut enc[2..]);
println!(" encoding {:?} len {:?}", enc, l);
assert!(ClientExtension::read_bytes(&enc).is_err());
}
}
}
fn test_client_extension_getter(typ: ExtensionType, getter: fn(&ClientHelloPayload) -> bool) {
let mut chp = get_sample_clienthellopayload();
let ext = chp.find_extension(typ).unwrap().clone();
chp.extensions = vec![];
assert!(!getter(&chp));
chp.extensions = vec![ext];
assert!(getter(&chp));
chp.extensions = vec![ClientExtension::Unknown(UnknownExtension {
typ,
payload: Payload(vec![]),
})];
assert!(!getter(&chp));
}
#[test]
fn client_get_sni_extension() {
test_client_extension_getter(ExtensionType::ServerName, |chp| {
chp.get_sni_extension().is_some()
});
}
#[test]
fn client_get_sigalgs_extension() {
test_client_extension_getter(ExtensionType::SignatureAlgorithms, |chp| {
chp.get_sigalgs_extension().is_some()
});
}
#[test]
fn client_get_namedgroups_extension() {
test_client_extension_getter(ExtensionType::EllipticCurves, |chp| {
chp.get_namedgroups_extension()
.is_some()
});
}
#[test]
fn client_get_ecpoints_extension() {
test_client_extension_getter(ExtensionType::ECPointFormats, |chp| {
chp.get_ecpoints_extension().is_some()
});
}
#[test]
fn client_get_alpn_extension() {
test_client_extension_getter(ExtensionType::ALProtocolNegotiation, |chp| {
chp.get_alpn_extension().is_some()
});
}
#[test]
fn client_get_quic_params_extension() {
test_client_extension_getter(ExtensionType::TransportParameters, |chp| {
chp.get_quic_params_extension()
.is_some()
});
}
#[test]
fn client_get_versions_extension() {
test_client_extension_getter(ExtensionType::SupportedVersions, |chp| {
chp.get_versions_extension().is_some()
});
}
#[test]
fn client_get_keyshare_extension() {
test_client_extension_getter(ExtensionType::KeyShare, |chp| {
chp.get_keyshare_extension().is_some()
});
}
#[test]
fn client_get_psk() {
test_client_extension_getter(ExtensionType::PreSharedKey, |chp| chp.get_psk().is_some());
}
#[test]
fn client_get_psk_modes() {
test_client_extension_getter(ExtensionType::PSKKeyExchangeModes, |chp| {
chp.get_psk_modes().is_some()
});
}
#[test]
fn test_truncated_helloretry_extension_is_detected() {
let hrr = get_sample_helloretryrequest();
for ext in &hrr.extensions {
let mut enc = ext.get_encoding();
println!("testing {:?} enc {:?}", ext, enc);
// "outer" truncation, i.e., where the extension-level length is longer than
// the input
for l in 0..enc.len() {
assert!(HelloRetryExtension::read_bytes(&enc[..l]).is_err());
}
// these extension types don't have any internal encoding that rustls validates:
if let ExtensionType::Unknown(_) = ext.get_type() {
continue;
}
// "inner" truncation, where the extension-level length agrees with the input
// length, but isn't long enough for the type of extension
for l in 0..(enc.len() - 4) {
put_u16(l as u16, &mut enc[2..]);
println!(" encoding {:?} len {:?}", enc, l);
assert!(HelloRetryExtension::read_bytes(&enc).is_err());
}
}
}
fn test_helloretry_extension_getter(typ: ExtensionType, getter: fn(&HelloRetryRequest) -> bool) {
let mut hrr = get_sample_helloretryrequest();
let mut exts = std::mem::take(&mut hrr.extensions);
exts.retain(|ext| ext.get_type() == typ);
assert!(!getter(&hrr));
hrr.extensions = exts;
assert!(getter(&hrr));
hrr.extensions = vec![HelloRetryExtension::Unknown(UnknownExtension {
typ,
payload: Payload(vec![]),
})];
assert!(!getter(&hrr));
}
#[test]
fn helloretry_get_requested_key_share_group() {
test_helloretry_extension_getter(ExtensionType::KeyShare, |hrr| {
hrr.get_requested_key_share_group()
.is_some()
});
}
#[test]
fn helloretry_get_cookie() {
test_helloretry_extension_getter(ExtensionType::Cookie, |hrr| hrr.get_cookie().is_some());
}
#[test]
fn helloretry_get_supported_versions() {
test_helloretry_extension_getter(ExtensionType::SupportedVersions, |hrr| {
hrr.get_supported_versions().is_some()
});
}
#[test]
fn test_truncated_server_extension_is_detected() {
let shp = get_sample_serverhellopayload();
for ext in &shp.extensions {
let mut enc = ext.get_encoding();
println!("testing {:?} enc {:?}", ext, enc);
// "outer" truncation, i.e., where the extension-level length is longer than
// the input
for l in 0..enc.len() {
assert!(ServerExtension::read_bytes(&enc[..l]).is_err());
}
// these extension types don't have any internal encoding that rustls validates:
match ext.get_type() {
ExtensionType::TransportParameters | ExtensionType::Unknown(_) => {
continue;
}
_ => {}
};
// "inner" truncation, where the extension-level length agrees with the input
// length, but isn't long enough for the type of extension
for l in 0..(enc.len() - 4) {
put_u16(l as u16, &mut enc[2..]);
println!(" encoding {:?} len {:?}", enc, l);
assert!(ServerExtension::read_bytes(&enc).is_err());
}
}
}
fn test_server_extension_getter(typ: ExtensionType, getter: fn(&ServerHelloPayload) -> bool) {
let mut shp = get_sample_serverhellopayload();
let ext = shp.find_extension(typ).unwrap().clone();
shp.extensions = vec![];
assert!(!getter(&shp));
shp.extensions = vec![ext];
assert!(getter(&shp));
shp.extensions = vec![ServerExtension::Unknown(UnknownExtension {
typ,
payload: Payload(vec![]),
})];
assert!(!getter(&shp));
}
#[test]
fn server_get_key_share() {
test_server_extension_getter(ExtensionType::KeyShare, |shp| shp.get_key_share().is_some());
}
#[test]
fn server_get_psk_index() {
test_server_extension_getter(ExtensionType::PreSharedKey, |shp| {
shp.get_psk_index().is_some()
});
}
#[test]
fn server_get_ecpoints_extension() {
test_server_extension_getter(ExtensionType::ECPointFormats, |shp| {
shp.get_ecpoints_extension().is_some()
});
}
#[test]
fn server_get_sct_list() {
test_server_extension_getter(ExtensionType::SCT, |shp| shp.get_sct_list().is_some());
}
#[test]
fn server_get_supported_versions() {
test_server_extension_getter(ExtensionType::SupportedVersions, |shp| {
shp.get_supported_versions().is_some()
});
}
fn test_cert_extension_getter(typ: ExtensionType, getter: fn(&CertificateEntry) -> bool) {
let mut ce = get_sample_certificatepayloadtls13()
.entries
.remove(0);
let mut exts = std::mem::take(&mut ce.exts);
exts.retain(|ext| ext.get_type() == typ);
assert!(!getter(&ce));
ce.exts = exts;
assert!(getter(&ce));
ce.exts = vec![CertificateExtension::Unknown(UnknownExtension {
typ,
payload: Payload(vec![]),
})];
assert!(!getter(&ce));
}
#[test]
fn certentry_get_ocsp_response() {
test_cert_extension_getter(ExtensionType::StatusRequest, |ce| {
ce.get_ocsp_response().is_some()
});
}
#[test]
fn certentry_get_scts() {
test_cert_extension_getter(ExtensionType::SCT, |ce| ce.get_scts().is_some());
}
fn get_sample_serverhellopayload() -> ServerHelloPayload {
ServerHelloPayload {
legacy_version: ProtocolVersion::TLSv1_2,
random: Random::from([0; 32]),
session_id: SessionId::empty(),
cipher_suite: CipherSuite::TLS_NULL_WITH_NULL_NULL,
compression_method: Compression::Null,
extensions: vec![
ServerExtension::ECPointFormats(ECPointFormat::SUPPORTED.to_vec()),
ServerExtension::ServerNameAck,
ServerExtension::SessionTicketAck,
ServerExtension::RenegotiationInfo(PayloadU8(vec![0])),
ServerExtension::Protocols(vec![ProtocolName::from(vec![0])]),
ServerExtension::KeyShare(KeyShareEntry::new(NamedGroup::X25519, &[1, 2, 3])),
ServerExtension::PresharedKey(3),
ServerExtension::ExtendedMasterSecretAck,
ServerExtension::CertificateStatusAck,
ServerExtension::SignedCertificateTimestamp(vec![Sct::from(vec![0])]),
ServerExtension::SupportedVersions(ProtocolVersion::TLSv1_2),
ServerExtension::TransportParameters(vec![1, 2, 3]),
ServerExtension::Unknown(UnknownExtension {
typ: ExtensionType::Unknown(12345),
payload: Payload(vec![1, 2, 3]),
}),
],
}
}
#[test]
fn can_print_all_serverextensions() {
println!("server hello {:?}", get_sample_serverhellopayload());
}
#[test]
fn can_clone_all_serverextensions() {
let _ = get_sample_serverhellopayload().extensions;
}
fn get_sample_helloretryrequest() -> HelloRetryRequest {
HelloRetryRequest {
legacy_version: ProtocolVersion::TLSv1_2,
session_id: SessionId::empty(),
cipher_suite: CipherSuite::TLS_NULL_WITH_NULL_NULL,
extensions: vec![
HelloRetryExtension::KeyShare(NamedGroup::X25519),
HelloRetryExtension::Cookie(PayloadU16(vec![0])),
HelloRetryExtension::SupportedVersions(ProtocolVersion::TLSv1_2),
HelloRetryExtension::Unknown(UnknownExtension {
typ: ExtensionType::Unknown(12345),
payload: Payload(vec![1, 2, 3]),
}),
],
}
}
fn get_sample_certificatepayloadtls13() -> CertificatePayloadTLS13 {
CertificatePayloadTLS13 {
context: PayloadU8(vec![1, 2, 3]),
entries: vec![CertificateEntry {
cert: Certificate(vec![3, 4, 5]),
exts: vec![
CertificateExtension::CertificateStatus(CertificateStatus {
ocsp_response: PayloadU24(vec![1, 2, 3]),
}),
CertificateExtension::SignedCertificateTimestamp(vec![Sct::from(vec![0])]),
CertificateExtension::Unknown(UnknownExtension {
typ: ExtensionType::Unknown(12345),
payload: Payload(vec![1, 2, 3]),
}),
],
}],
}
}
fn get_sample_serverkeyexchangepayload_ecdhe() -> ServerKeyExchangePayload {
ServerKeyExchangePayload::ECDHE(ECDHEServerKeyExchange {
params: ServerECDHParams {
curve_params: ECParameters {
curve_type: ECCurveType::NamedCurve,
named_group: NamedGroup::X25519,
},
public: PayloadU8(vec![1, 2, 3]),
},
dss: DigitallySignedStruct::new(SignatureScheme::RSA_PSS_SHA256, vec![1, 2, 3]),
})
}
fn get_sample_serverkeyexchangepayload_unknown() -> ServerKeyExchangePayload {
ServerKeyExchangePayload::Unknown(Payload(vec![1, 2, 3]))
}
fn get_sample_certificaterequestpayload() -> CertificateRequestPayload {
CertificateRequestPayload {
certtypes: vec![ClientCertificateType::RSASign],
sigschemes: vec![SignatureScheme::ECDSA_NISTP256_SHA256],
canames: vec![DistinguishedName::from(vec![1, 2, 3])],
}
}
fn get_sample_certificaterequestpayloadtls13() -> CertificateRequestPayloadTLS13 {
CertificateRequestPayloadTLS13 {
context: PayloadU8(vec![1, 2, 3]),
extensions: vec![
CertReqExtension::SignatureAlgorithms(vec![SignatureScheme::ECDSA_NISTP256_SHA256]),
CertReqExtension::AuthorityNames(vec![DistinguishedName::from(vec![1, 2, 3])]),
CertReqExtension::Unknown(UnknownExtension {
typ: ExtensionType::Unknown(12345),
payload: Payload(vec![1, 2, 3]),
}),
],
}
}
fn get_sample_newsessionticketpayload() -> NewSessionTicketPayload {
NewSessionTicketPayload {
lifetime_hint: 1234,
ticket: PayloadU16(vec![1, 2, 3]),
}
}
fn get_sample_newsessionticketpayloadtls13() -> NewSessionTicketPayloadTLS13 {
NewSessionTicketPayloadTLS13 {
lifetime: 123,
age_add: 1234,
nonce: PayloadU8(vec![1, 2, 3]),
ticket: PayloadU16(vec![4, 5, 6]),
exts: vec![NewSessionTicketExtension::Unknown(UnknownExtension {
typ: ExtensionType::Unknown(12345),
payload: Payload(vec![1, 2, 3]),
})],
}
}
fn get_sample_encryptedextensions() -> Vec<ServerExtension> {
get_sample_serverhellopayload().extensions
}
fn get_sample_certificatestatus() -> CertificateStatus {
CertificateStatus {
ocsp_response: PayloadU24(vec![1, 2, 3]),
}
}
fn get_all_tls12_handshake_payloads() -> Vec<HandshakeMessagePayload> {
vec![
HandshakeMessagePayload {
typ: HandshakeType::HelloRequest,
payload: HandshakePayload::HelloRequest,
},
HandshakeMessagePayload {
typ: HandshakeType::ClientHello,
payload: HandshakePayload::ClientHello(get_sample_clienthellopayload()),
},
HandshakeMessagePayload {
typ: HandshakeType::ServerHello,
payload: HandshakePayload::ServerHello(get_sample_serverhellopayload()),
},
HandshakeMessagePayload {
typ: HandshakeType::HelloRetryRequest,
payload: HandshakePayload::HelloRetryRequest(get_sample_helloretryrequest()),
},
HandshakeMessagePayload {
typ: HandshakeType::Certificate,
payload: HandshakePayload::Certificate(vec![Certificate(vec![1, 2, 3])]),
},
HandshakeMessagePayload {
typ: HandshakeType::ServerKeyExchange,
payload: HandshakePayload::ServerKeyExchange(
get_sample_serverkeyexchangepayload_ecdhe(),
),
},
HandshakeMessagePayload {
typ: HandshakeType::ServerKeyExchange,
payload: HandshakePayload::ServerKeyExchange(
get_sample_serverkeyexchangepayload_unknown(),
),
},
HandshakeMessagePayload {
typ: HandshakeType::CertificateRequest,
payload: HandshakePayload::CertificateRequest(get_sample_certificaterequestpayload()),
},
HandshakeMessagePayload {
typ: HandshakeType::ServerHelloDone,
payload: HandshakePayload::ServerHelloDone,
},
HandshakeMessagePayload {
typ: HandshakeType::ClientKeyExchange,
payload: HandshakePayload::ClientKeyExchange(Payload(vec![1, 2, 3])),
},
HandshakeMessagePayload {
typ: HandshakeType::NewSessionTicket,
payload: HandshakePayload::NewSessionTicket(get_sample_newsessionticketpayload()),
},
HandshakeMessagePayload {
typ: HandshakeType::EncryptedExtensions,
payload: HandshakePayload::EncryptedExtensions(get_sample_encryptedextensions()),
},
HandshakeMessagePayload {
typ: HandshakeType::KeyUpdate,
payload: HandshakePayload::KeyUpdate(KeyUpdateRequest::UpdateRequested),
},
HandshakeMessagePayload {
typ: HandshakeType::KeyUpdate,
payload: HandshakePayload::KeyUpdate(KeyUpdateRequest::UpdateNotRequested),
},
HandshakeMessagePayload {
typ: HandshakeType::Finished,
payload: HandshakePayload::Finished(Payload(vec![1, 2, 3])),
},
HandshakeMessagePayload {
typ: HandshakeType::CertificateStatus,
payload: HandshakePayload::CertificateStatus(get_sample_certificatestatus()),
},
HandshakeMessagePayload {
typ: HandshakeType::Unknown(99),
payload: HandshakePayload::Unknown(Payload(vec![1, 2, 3])),
},
]
}
#[test]
fn can_roundtrip_all_tls12_handshake_payloads() {
for ref hm in get_all_tls12_handshake_payloads().iter() {
println!("{:?}", hm.typ);
let bytes = hm.get_encoding();
let mut rd = Reader::init(&bytes);
let other = HandshakeMessagePayload::read(&mut rd).unwrap();
assert!(!rd.any_left());
assert_eq!(hm.get_encoding(), other.get_encoding());
println!("{:?}", hm);
println!("{:?}", other);
}
}
#[test]
fn can_detect_truncation_of_all_tls12_handshake_payloads() {
for hm in get_all_tls12_handshake_payloads().iter() {
let mut enc = hm.get_encoding();
println!("test {:?} enc {:?}", hm, enc);
// outer truncation
for l in 0..enc.len() {
assert!(HandshakeMessagePayload::read_bytes(&enc[..l]).is_err())
}
// inner truncation
for l in 0..enc.len() - 4 {
put_u24(l as u32, &mut enc[1..]);
println!(" check len {:?} enc {:?}", l, enc);
match (hm.typ, l) {
(HandshakeType::ClientHello, 41)
| (HandshakeType::ServerHello, 38)
| (HandshakeType::ServerKeyExchange, _)
| (HandshakeType::ClientKeyExchange, _)
| (HandshakeType::Finished, _)
| (HandshakeType::Unknown(_), _) => continue,
_ => {}
};
assert!(HandshakeMessagePayload::read_version(
&mut Reader::init(&enc),
ProtocolVersion::TLSv1_2
)
.is_err());
assert!(HandshakeMessagePayload::read_bytes(&enc).is_err());
}
}
}
fn get_all_tls13_handshake_payloads() -> Vec<HandshakeMessagePayload> {
vec![
HandshakeMessagePayload {
typ: HandshakeType::HelloRequest,
payload: HandshakePayload::HelloRequest,
},
HandshakeMessagePayload {
typ: HandshakeType::ClientHello,
payload: HandshakePayload::ClientHello(get_sample_clienthellopayload()),
},
HandshakeMessagePayload {
typ: HandshakeType::ServerHello,
payload: HandshakePayload::ServerHello(get_sample_serverhellopayload()),
},
HandshakeMessagePayload {
typ: HandshakeType::HelloRetryRequest,
payload: HandshakePayload::HelloRetryRequest(get_sample_helloretryrequest()),
},
HandshakeMessagePayload {
typ: HandshakeType::Certificate,
payload: HandshakePayload::CertificateTLS13(get_sample_certificatepayloadtls13()),
},
HandshakeMessagePayload {
typ: HandshakeType::ServerKeyExchange,
payload: HandshakePayload::ServerKeyExchange(
get_sample_serverkeyexchangepayload_ecdhe(),
),
},
HandshakeMessagePayload {
typ: HandshakeType::ServerKeyExchange,
payload: HandshakePayload::ServerKeyExchange(
get_sample_serverkeyexchangepayload_unknown(),
),
},
HandshakeMessagePayload {
typ: HandshakeType::CertificateRequest,
payload: HandshakePayload::CertificateRequestTLS13(
get_sample_certificaterequestpayloadtls13(),
),
},
HandshakeMessagePayload {
typ: HandshakeType::CertificateVerify,
payload: HandshakePayload::CertificateVerify(DigitallySignedStruct::new(
SignatureScheme::ECDSA_NISTP256_SHA256,
vec![1, 2, 3],
)),
},
HandshakeMessagePayload {
typ: HandshakeType::ServerHelloDone,
payload: HandshakePayload::ServerHelloDone,
},
HandshakeMessagePayload {
typ: HandshakeType::ClientKeyExchange,
payload: HandshakePayload::ClientKeyExchange(Payload(vec![1, 2, 3])),
},
HandshakeMessagePayload {
typ: HandshakeType::NewSessionTicket,
payload: HandshakePayload::NewSessionTicketTLS13(
get_sample_newsessionticketpayloadtls13(),
),
},
HandshakeMessagePayload {
typ: HandshakeType::EncryptedExtensions,
payload: HandshakePayload::EncryptedExtensions(get_sample_encryptedextensions()),
},
HandshakeMessagePayload {
typ: HandshakeType::KeyUpdate,
payload: HandshakePayload::KeyUpdate(KeyUpdateRequest::UpdateRequested),
},
HandshakeMessagePayload {
typ: HandshakeType::KeyUpdate,
payload: HandshakePayload::KeyUpdate(KeyUpdateRequest::UpdateNotRequested),
},
HandshakeMessagePayload {
typ: HandshakeType::Finished,
payload: HandshakePayload::Finished(Payload(vec![1, 2, 3])),
},
HandshakeMessagePayload {
typ: HandshakeType::CertificateStatus,
payload: HandshakePayload::CertificateStatus(get_sample_certificatestatus()),
},
HandshakeMessagePayload {
typ: HandshakeType::Unknown(99),
payload: HandshakePayload::Unknown(Payload(vec![1, 2, 3])),
},
]
}
#[test]
fn can_roundtrip_all_tls13_handshake_payloads() {
for ref hm in get_all_tls13_handshake_payloads().iter() {
println!("{:?}", hm.typ);
let bytes = hm.get_encoding();
let mut rd = Reader::init(&bytes);
let other =
HandshakeMessagePayload::read_version(&mut rd, ProtocolVersion::TLSv1_3).unwrap();
assert!(!rd.any_left());
assert_eq!(hm.get_encoding(), other.get_encoding());
println!("{:?}", hm);
println!("{:?}", other);
}
}
fn put_u24(u: u32, b: &mut [u8]) {
b[0] = (u >> 16) as u8;
b[1] = (u >> 8) as u8;
b[2] = u as u8;
}
#[test]
fn can_detect_truncation_of_all_tls13_handshake_payloads() {
for hm in get_all_tls13_handshake_payloads().iter() {
let mut enc = hm.get_encoding();
println!("test {:?} enc {:?}", hm, enc);
// outer truncation
for l in 0..enc.len() {
assert!(HandshakeMessagePayload::read_bytes(&enc[..l]).is_err())
}
// inner truncation
for l in 0..enc.len() - 4 {
put_u24(l as u32, &mut enc[1..]);
println!(" check len {:?} enc {:?}", l, enc);
match (hm.typ, l) {
(HandshakeType::ClientHello, 41)
| (HandshakeType::ServerHello, 38)
| (HandshakeType::ServerKeyExchange, _)
| (HandshakeType::ClientKeyExchange, _)
| (HandshakeType::Finished, _)
| (HandshakeType::Unknown(_), _) => continue,
_ => {}
};
assert!(HandshakeMessagePayload::read_version(
&mut Reader::init(&enc),
ProtocolVersion::TLSv1_3
)
.is_err());
}
}
}
#[test]
fn cannot_read_messagehash_from_network() {
let mh = HandshakeMessagePayload {
typ: HandshakeType::MessageHash,
payload: HandshakePayload::MessageHash(Payload::new(vec![1, 2, 3])),
};
println!("mh {:?}", mh);
let enc = mh.get_encoding();
assert!(HandshakeMessagePayload::read_bytes(&enc).is_err());
}
#[test]
fn cannot_decode_huge_certificate() {
let mut buf = [0u8; 65 * 1024];
// exactly 64KB decodes fine
buf[0] = 0x0b;
buf[1] = 0x01;
buf[2] = 0x00;
buf[3] = 0x03;
buf[4] = 0x01;
buf[5] = 0x00;
buf[6] = 0x00;
buf[7] = 0x00;
buf[8] = 0xff;
buf[9] = 0xfd;
HandshakeMessagePayload::read_bytes(&buf).unwrap();
// however 64KB + 1 byte does not
buf[1] = 0x01;
buf[2] = 0x00;
buf[3] = 0x04;
buf[4] = 0x01;
buf[5] = 0x00;
buf[6] = 0x01;
assert!(HandshakeMessagePayload::read_bytes(&buf).is_err());
}
#[test]
fn can_decode_server_hello_from_api_devicecheck_apple_com() {
let data = include_bytes!("hello-api.devicecheck.apple.com.bin");
let mut r = Reader::init(data);
let hm = HandshakeMessagePayload::read(&mut r).unwrap();
println!("msg: {:?}", hm);
}