blob: 68a548378a515d5ce3ca142c8d0c13cb4ac699a2 [file] [log] [blame]
// Copyright (c) 2011 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "net/ssl/ssl_cipher_suite_names.h"
#include "base/basictypes.h"
#include "testing/gtest/include/gtest/gtest.h"
namespace net {
namespace {
TEST(CipherSuiteNamesTest, Basic) {
const char *key_exchange, *cipher, *mac;
bool is_aead;
SSLCipherSuiteToStrings(&key_exchange, &cipher, &mac, &is_aead, 0xc001);
EXPECT_STREQ("ECDH_ECDSA", key_exchange);
EXPECT_STREQ("NULL", cipher);
EXPECT_STREQ("HMAC-SHA1", mac);
EXPECT_FALSE(is_aead);
SSLCipherSuiteToStrings(&key_exchange, &cipher, &mac, &is_aead, 0x009f);
EXPECT_STREQ("DHE_RSA", key_exchange);
EXPECT_STREQ("AES_256_GCM", cipher);
EXPECT_TRUE(is_aead);
EXPECT_EQ(NULL, mac);
SSLCipherSuiteToStrings(&key_exchange, &cipher, &mac, &is_aead, 0xcc15);
EXPECT_STREQ("DHE_RSA", key_exchange);
EXPECT_STREQ("CHACHA20_POLY1305", cipher);
EXPECT_TRUE(is_aead);
EXPECT_EQ(NULL, mac);
SSLCipherSuiteToStrings(&key_exchange, &cipher, &mac, &is_aead, 0xff31);
EXPECT_STREQ("???", key_exchange);
EXPECT_STREQ("???", cipher);
EXPECT_STREQ("???", mac);
EXPECT_FALSE(is_aead);
}
TEST(CipherSuiteNamesTest, ParseSSLCipherString) {
uint16 cipher_suite = 0;
EXPECT_TRUE(ParseSSLCipherString("0x0004", &cipher_suite));
EXPECT_EQ(0x00004u, cipher_suite);
EXPECT_TRUE(ParseSSLCipherString("0xBEEF", &cipher_suite));
EXPECT_EQ(0xBEEFu, cipher_suite);
}
TEST(CipherSuiteNamesTest, ParseSSLCipherStringFails) {
const char* const cipher_strings[] = {
"0004",
"0x004",
"0xBEEFY",
};
for (size_t i = 0; i < arraysize(cipher_strings); ++i) {
uint16 cipher_suite = 0;
EXPECT_FALSE(ParseSSLCipherString(cipher_strings[i], &cipher_suite));
}
}
TEST(CipherSuiteNamesTest, SecureCipherSuites) {
// Picked some random cipher suites.
EXPECT_FALSE(IsSecureTLSCipherSuite(0x0 /* TLS_NULL_WITH_NULL_NULL */));
EXPECT_FALSE(
IsSecureTLSCipherSuite(0x39 /* TLS_DHE_RSA_WITH_AES_256_CBC_SHA */));
EXPECT_FALSE(IsSecureTLSCipherSuite(
0xc5 /* TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA256 */));
EXPECT_FALSE(
IsSecureTLSCipherSuite(0xc00f /* TLS_ECDH_RSA_WITH_AES_256_CBC_SHA */));
EXPECT_FALSE(IsSecureTLSCipherSuite(
0xc083 /* TLS_DH_DSS_WITH_CAMELLIA_256_GCM_SHA384 */));
EXPECT_FALSE(
IsSecureTLSCipherSuite(0x9e /* TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 */));
EXPECT_FALSE(
IsSecureTLSCipherSuite(0xc014 /* TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA */));
EXPECT_FALSE(
IsSecureTLSCipherSuite(0x9c /* TLS_RSA_WITH_AES_128_GCM_SHA256 */));
// Non-existent cipher suite.
EXPECT_FALSE(IsSecureTLSCipherSuite(0xffff)) << "Doesn't exist!";
// Secure ones.
EXPECT_TRUE(IsSecureTLSCipherSuite(
0xc02f /* TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 */));
EXPECT_TRUE(IsSecureTLSCipherSuite(
0xcc13 /* ECDHE_RSA_WITH_CHACHA20_POLY1305 (non-standard) */));
EXPECT_TRUE(IsSecureTLSCipherSuite(
0xcc14 /* ECDHE_ECDSA_WITH_CHACHA20_POLY1305 (non-standard) */));
}
TEST(CipherSuiteNamesTest, HTTP2CipherSuites) {
// Picked some random cipher suites.
EXPECT_FALSE(
IsTLSCipherSuiteAllowedByHTTP2(0x0 /* TLS_NULL_WITH_NULL_NULL */));
EXPECT_FALSE(IsTLSCipherSuiteAllowedByHTTP2(
0x39 /* TLS_DHE_RSA_WITH_AES_256_CBC_SHA */));
EXPECT_FALSE(IsTLSCipherSuiteAllowedByHTTP2(
0xc5 /* TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA256 */));
EXPECT_FALSE(IsTLSCipherSuiteAllowedByHTTP2(
0xc00f /* TLS_ECDH_RSA_WITH_AES_256_CBC_SHA */));
EXPECT_FALSE(IsTLSCipherSuiteAllowedByHTTP2(
0xc083 /* TLS_DH_DSS_WITH_CAMELLIA_256_GCM_SHA384 */));
EXPECT_FALSE(IsTLSCipherSuiteAllowedByHTTP2(
0xc014 /* TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA */));
EXPECT_FALSE(IsTLSCipherSuiteAllowedByHTTP2(
0x9c /* TLS_RSA_WITH_AES_128_GCM_SHA256 */));
// Non-existent cipher suite.
EXPECT_FALSE(IsTLSCipherSuiteAllowedByHTTP2(0xffff)) << "Doesn't exist!";
// HTTP/2-compatible ones.
EXPECT_TRUE(IsTLSCipherSuiteAllowedByHTTP2(
0x9e /* TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 */));
EXPECT_TRUE(IsTLSCipherSuiteAllowedByHTTP2(
0xc02f /* TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 */));
EXPECT_TRUE(IsTLSCipherSuiteAllowedByHTTP2(
0xcc13 /* ECDHE_RSA_WITH_CHACHA20_POLY1305 (non-standard) */));
EXPECT_TRUE(IsTLSCipherSuiteAllowedByHTTP2(
0xcc14 /* ECDHE_ECDSA_WITH_CHACHA20_POLY1305 (non-standard) */));
}
} // anonymous namespace
} // namespace net