Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Extended test_suite_ssl testing for TLS HS defragmentation #9968

Open
4 tasks
mpg opened this issue Feb 12, 2025 · 0 comments
Open
4 tasks

Extended test_suite_ssl testing for TLS HS defragmentation #9968

mpg opened this issue Feb 12, 2025 · 0 comments
Assignees
@mpg
Labels
component-tls component-tls13 priority-high High priority - will be reviewed soon size-m Estimated task size: medium (~1w)

Comments

@mpg
Copy link
Contributor

mpg commented Feb 12, 2025
edited
Loading

We need some extra testing that can't be done with ssl-opt.sh but need the extra powers we have in test_suite_ssl. This task covers those bits, that are not covered by #9887 or #9987.

  • Receive an incomplete sequence of fragments, then a non-handshake message.
  • Receive fragments whose total announced size announced is over some relevant limit, even though each fragment is under the limit.
  • Receive fragments whose total size (intermediate while we're waiting for more fragments) is over some relevant limit, even though each fragment is under the limit.
  • If not covered by Extended ssl-opt tests for TLS HS defragmentation #9987: in TLS 1.2, the ClientHello that initiates a renegotiation is fragmented. It's OK for us not to work in this case, but if we fail it must be cleanly.
@mpg mpg added component-tls component-tls13 priority-high High priority - will be reviewed soon size-m Estimated task size: medium (~1w) labels Feb 12, 2025
@mpg mpg moved this to TLS 1.3 compatibility fix in Mbed TLS Epics Feb 12, 2025
@mpg mpg self-assigned this Feb 12, 2025
This was referenced Feb 17, 2025
Open
Open
@mpg mpg changed the title Extended/negative testing for TLS HS defragmentation Extended test_suite_ssl testing for TLS HS defragmentation Feb 17, 2025
@minosgalanakis minosgalanakis mentioned this issue Feb 17, 2025
Open
6 tasks
This was referenced Feb 19, 2025
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@mpg mpg

Labels
component-tls component-tls13 priority-high High priority - will be reviewed soon size-m Estimated task size: medium (~1w)
Projects
Mbed TLS Epics
Status: TLS 1.3 compatibility fix
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mpg