1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
|
/*
* Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License").
* You may not use this file except in compliance with the License.
* A copy of the License is located at
*
* http://aws.amazon.com/apache2.0
*
* or in the "license" file accompanying this file. This file is distributed
* on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
* express or implied. See the License for the specific language governing
* permissions and limitations under the License.
*/
#include "tls/s2n_signature_scheme.h"
#include "crypto/s2n_mldsa.h"
#include "s2n_test.h"
int main(int argc, char **argv)
{
BEGIN_TEST();
const struct s2n_signature_preferences *all_prefs = &s2n_signature_preferences_all;
/* Test all signature schemes */
size_t policy_i = 0;
while (security_policy_selection[policy_i].version != NULL) {
const struct s2n_signature_preferences *sig_prefs =
security_policy_selection[policy_i].security_policy->signature_preferences;
bool s2n_rsa_pkcs1_md5_sha1_found = false;
for (size_t sig_i = 0; sig_i < sig_prefs->count; sig_i++) {
const struct s2n_signature_scheme *const sig_scheme = sig_prefs->signature_schemes[sig_i];
EXPECT_NOT_EQUAL(sig_scheme->iana_value, 0);
EXPECT_NOT_EQUAL(sig_scheme->hash_alg, S2N_HASH_NONE);
EXPECT_NOT_EQUAL(sig_scheme->sig_alg, S2N_SIGNATURE_ANONYMOUS);
if (sig_scheme->sig_alg == S2N_SIGNATURE_MLDSA
&& !s2n_mldsa_is_supported()) {
EXPECT_EQUAL(sig_scheme->libcrypto_nid, 0);
} else {
EXPECT_NOT_EQUAL(sig_scheme->libcrypto_nid, 0);
}
if (sig_scheme->sig_alg == S2N_SIGNATURE_ECDSA
&& sig_scheme->maximum_protocol_version != S2N_TLS12) {
EXPECT_NOT_NULL(sig_scheme->signature_curve);
/* These schemes also require additional naming information */
EXPECT_NOT_NULL(sig_scheme->legacy_name);
EXPECT_NOT_NULL(sig_scheme->tls13_name);
} else {
EXPECT_NULL(sig_scheme->signature_curve);
}
/* No duplicate signature schemes are allowed */
for (size_t dup_i = 0; dup_i < sig_prefs->count; dup_i++) {
if (dup_i == sig_i) {
continue;
}
const struct s2n_signature_scheme *const potential_duplicate =
sig_prefs->signature_schemes[dup_i];
EXPECT_NOT_EQUAL(sig_scheme->iana_value, potential_duplicate->iana_value);
}
if (sig_scheme == &s2n_rsa_pkcs1_md5_sha1) {
s2n_rsa_pkcs1_md5_sha1_found = true;
}
/* s2n_null_sig_scheme is not a real signature scheme and is just a placeholder.
* It should not appear in any policy.
*/
EXPECT_NOT_EQUAL(sig_scheme, &s2n_null_sig_scheme);
/* Must be included in s2n_signature_preferences_all */
bool in_all = false;
for (size_t all_i = 0; all_i < all_prefs->count; all_i++) {
if (sig_scheme == all_prefs->signature_schemes[all_i]) {
in_all = true;
}
}
EXPECT_TRUE(in_all);
}
/* Only s2n_signature_preferences_all should include s2n_rsa_pkcs1_md5_sha1
*
* s2n_rsa_pkcs1_md5_sha1 is the implicit default for pre-TLS1.2 when no signature
* schemes are provided. Any code that needs to handle "all signature schemes"
* also needs to handle s2n_rsa_pkcs1_md5_sha1. It is not explicitly included
* in any real signature preferences, but should still be tracked by
* s2n_signature_preferences_all.
*/
EXPECT_EQUAL(s2n_rsa_pkcs1_md5_sha1_found, sig_prefs == all_prefs);
policy_i++;
}
END_TEST();
}
|
