#! /bin/csh -f
set SSL_NEWROOT=localcert.cer
set NAME_SPOOF=
set SSL_AUTO=0
set SSL_HOST=localhost
set QUIET=
while ( $ switch ( "$argv[1]" )
case a:
set SSL_AUTO = 1
shift
breaksw
case q:
set QUIET = q
shift
breaksw
default:
echo 'Usage: protClient [a(auto)]'
exit(1)
endsw
end
set STD_OPTS="$SSL_HOST a $SSL_NEWROOT $NAME_SPOOF"
echo ===== unrestricted server via SSLSetProtocolVersion
set SSL_PORT=1200
runProtClient $QUIET $STD_OPTS P=$SSL_PORT t m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT t o m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 3 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 3 o m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 2 m=2 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=2 m=2 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=3 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=23 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=23t m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=2t m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=3t m=t || exit(1)
doprompt $SSL_AUTO $QUIET
echo ===== server restricted to SSL2,3 via SSLSetProtocolVersion
set SSL_PORT=1201
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 3 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 2 m=2 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT t m=3 || exit(1)
runProtClient $QUIET e "Expect error due to server ssl3 restriction" \
$STD_OPTS P=$SSL_PORT t o || exit(1)
runProtClient $QUIET e "Expect error due to server ssl3 restriction" \
$STD_OPTS P=$SSL_PORT g=t || exit(1)
doprompt $SSL_AUTO $QUIET
echo ===== server restricted to SSL2 via SSLSetProtocolVersion
set SSL_PORT=1202
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 2 m=2 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 3 m=2 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT t m=2 || exit(1)
runProtClient $QUIET e "Expect error due to server ssl2 restriction" \
$STD_OPTS P=$SSL_PORT t o || exit(1)
runProtClient $QUIET e "Expect error due to server ssl2 restriction" \
$STD_OPTS P=$SSL_PORT 3 o || exit(1)
runProtClient $QUIET e "Expect error due to server ssl2 restriction" \
$STD_OPTS P=$SSL_PORT g=3t || exit(1)
runProtClient $QUIET e "Expect error due to server ssl2 restriction" \
$STD_OPTS P=$SSL_PORT g=t || exit(1)
runProtClient $QUIET e "Expect error due to server ssl2 restriction" \
$STD_OPTS P=$SSL_PORT g=3 || exit(1)
doprompt $SSL_AUTO $QUIET
echo ===== unrestricted server via SSLSetProtocolVersionEnabled
set SSL_PORT=1203
runProtClient $QUIET $STD_OPTS P=$SSL_PORT t m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT t o m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 3 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 3 o m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 2 m=2 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=2 m=2 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=3 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=23 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=23t m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=2t m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=3t m=t || exit(1)
doprompt $SSL_AUTO $QUIET
echo ===== server restricted to SSL3, TLS1 via SSLSetProtocolVersionEnabled
set SSL_PORT=1204
runProtClient $QUIET $STD_OPTS P=$SSL_PORT t m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT t o m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 3 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 3 o m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=23t m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=3t m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=2t m=t || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=23 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=3 m=3 || exit(1)
runProtClient $QUIET e "Expect error due to server SSL3,TLS1 restriction " \
$STD_OPTS P=$SSL_PORT 2 || exit(1)
runProtClient $QUIET e "Expect error due to server SSL3,TLS1 restriction " \
$STD_OPTS P=$SSL_PORT g=2 || exit(1)
doprompt $SSL_AUTO $QUIET
echo ===== server restricted to SSL2,3 via SSLSetProtocolVersionEnabled
set SSL_PORT=1205
runProtClient $QUIET $STD_OPTS P=$SSL_PORT t m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 3 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 3 o m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT 2 m=2 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=23t m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=23 m=3 || exit(1)
runProtClient $QUIET $STD_OPTS P=$SSL_PORT g=3 m=3 || exit(1)
runProtClient $QUIET e "Expect error due to server SSL2,3 restriction" \
$STD_OPTS P=$SSL_PORT g=2t || exit(1)
runProtClient $QUIET e "Expect error due to server SSL2,3 restriction" \
$STD_OPTS P=$SSL_PORT t o || exit(1)
runProtClient $QUIET e "Expect error due to server SSL2,3 restriction" \
$STD_OPTS P=$SSL_PORT g=t || exit(1)
echo =====
echo ===== protClient success
echo =====