testing improvements (from #10542):

- *_wire_sni test is now more efficient
- openssl-ech workflow now does interop with ECH rejection

extra improvements:
- tested TLSX_EchSwapExtensions
- added ctx level SNI to padding calculation
- Improvement of SNI handling for ECH

Author: sebastian-carpenter

.github/scripts/openssl-ech.sh

@@ -11,7 +11,7 @@ cleanup() {
 trap cleanup EXIT
 
 usage() {
-    echo "Usage: $0 <client|server> [--suite <KEM,KDF,AEAD>] [--pqc <group>] [--hrr] [--workspace <path>]"
+    echo "Usage: $0 <client|server> [--suite <KEM,KDF,AEAD>] [--pqc <group>] [--hrr] [--reject] [--workspace <path>]"
     exit 1
 }
 
@@ -22,6 +22,7 @@ MODE=""
 SUITE=""
 PQC=""
 FORCE_HRR=0
+REJECT=0
 
 WORKSPACE=${GITHUB_WORKSPACE:-"."}
 
@@ -51,6 +52,10 @@ while [ $# -gt 0 ]; do
             FORCE_HRR=1
             shift
             ;;
+        --reject)
+            REJECT=1
+            shift
+            ;;
         --workspace)
             [ -z "$2" ] && { echo "ERROR: --workspace requires a value"; exit 1; }
             WORKSPACE="$2"
@@ -84,9 +89,16 @@ WOLFSSL_CLIENT=${WOLFSSL_CLIENT:-"$WORKSPACE/examples/client/client"}
 WOLFSSL_SERVER=${WOLFSSL_SERVER:-"$WORKSPACE/examples/server/server"}
 CERT_DIR=${CERT_DIR:-"$WORKSPACE/certs"}
 
+# correct ECH config, but it's old, ECH will be rejected
+REJECT_ECH_CONFIG="AD7+DQA6rAAgACCATZdDlHed6GlDeiYsu3r7sdWUkLVHZuTa3lbOf+hIbAAEAAEAAQALZXhhbXBsZS5jb20AAA=="
+
 TMP_LOG="$WORKSPACE/tmp_file.log"
+# Will need to look into validating the name against the cert for the OSSL cli.
+# This is fine, but should be upgraded to use a second cert in the future.
 PRIV_NAME="ech-private-name.com"
-PUB_NAME="ech-public-name.com"
+# example.com is taken from the server certificate,
+# echConfigs needs to authenticate against the cert with this name to succeed
+PUB_NAME="example.com"
 MAX_WAIT=50
 
 # --------------------------------------------------------------------------
@@ -128,6 +140,8 @@ openssl_server(){
 
     # parse ECH config from file
     ech_config=$(sed -n '/BEGIN ECHCONFIG/,/END ECHCONFIG/{/BEGIN ECHCONFIG\|END ECHCONFIG/d;p}' "$ech_file" | tr -d '\n')
+    # reject overrides the config the client connects with
+    [ "$REJECT" -ne 0 ] && ech_config="$REJECT_ECH_CONFIG"
     echo "parsed ech config: $ech_config" &>> "$TMP_LOG"
 
     # start OpenSSL ECH server with ephemeral port; line-buffer so the
@@ -158,17 +172,29 @@ openssl_server(){
     done
     echo "parsed port: $port" &>> "$TMP_LOG"
 
-    # test with wolfssl client
-    $WOLFSSL_CLIENT -v 4 \
-        -p "$port" \
-        -S "$PRIV_NAME" \
-        --ech "$ech_config" \
-        $wolfssl_extra \
-        &>> "$TMP_LOG"
-
     rm -f "$ech_file"
 
-    grep -q "ech_success=1" "$TMP_LOG"
+    # test with wolfssl client
+    if [ "$REJECT" -ne 0 ]; then
+        $WOLFSSL_CLIENT -v 4 \
+            -p "$port" \
+            -S "$PRIV_NAME" \
+            --ech "$ech_config" \
+            $wolfssl_extra \
+            &>> "$TMP_LOG" || true
+
+        grep -q "ECH offered but rejected by server" "$TMP_LOG"
+        grep -q "ech_success=0" "$TMP_LOG"
+    else
+        $WOLFSSL_CLIENT -v 4 \
+            -p "$port" \
+            -S "$PRIV_NAME" \
+            --ech "$ech_config" \
+            $wolfssl_extra \
+            &>> "$TMP_LOG"
+
+        grep -q "ech_success=1" "$TMP_LOG"
+    fi
 }
 
 # --------------------------------------------------------------------------
@@ -246,21 +272,39 @@ openssl_client(){
             exit 1
         fi
     done
+    # reject overrides the config the client connects with
+    [ "$REJECT" -ne 0 ] && ech_config="$REJECT_ECH_CONFIG"
     echo "parsed ech config: $ech_config" &>> "$TMP_LOG"
 
-    # test with OpenSSL s_client using ECH
-    echo "wolfssl" | $OPENSSL s_client \
-        -tls1_3 \
-        -connect "localhost:$port" \
-        -cert "$CERT_DIR/client-cert.pem" \
-        -key "$CERT_DIR/client-key.pem" \
-        -CAfile "$CERT_DIR/ca-cert.pem" \
-        -servername "$PRIV_NAME" \
-        -ech_config_list "$ech_config" \
-        $openssl_groups \
-        &>> "$TMP_LOG"
-
-    grep -q "ECH: success: 1" "$TMP_LOG"
+    if [ "$REJECT" -ne 0 ]; then
+        # test with OpenSSL s_client using ECH
+        echo "wolfssl" | $OPENSSL s_client \
+            -tls1_3 \
+            -connect "localhost:$port" \
+            -cert "$CERT_DIR/client-cert.pem" \
+            -key "$CERT_DIR/client-key.pem" \
+            -CAfile "$CERT_DIR/ca-cert.pem" \
+            -servername "$PRIV_NAME" \
+            -ech_config_list "$ech_config" \
+            $openssl_groups \
+            &>> "$TMP_LOG" || true
+
+        grep -q "ECH: Got 1 retry-configs" "$TMP_LOG"
+    else
+        # test with OpenSSL s_client using ECH
+        echo "wolfssl" | $OPENSSL s_client \
+            -tls1_3 \
+            -connect "localhost:$port" \
+            -cert "$CERT_DIR/client-cert.pem" \
+            -key "$CERT_DIR/client-key.pem" \
+            -CAfile "$CERT_DIR/ca-cert.pem" \
+            -servername "$PRIV_NAME" \
+            -ech_config_list "$ech_config" \
+            $openssl_groups \
+            &>> "$TMP_LOG"
+
+        grep -q "ECH: success: 1" "$TMP_LOG"
+    fi
 }
 
 rm -f "$TMP_LOG"

.github/workflows/openssl-ech.yml

@@ -167,6 +167,12 @@ jobs:
           echo -e "\nTesting weird suite with OpenSSL client and wolfSSL server\n" &>> "$LOG_FILE"
           bash ./openssl-ech.sh client --suite "18,1,2" &>> "$LOG_FILE"
 
+          echo -e "\nTesting rejection with OpenSSL server and wolfSSL client\n" &>> "$LOG_FILE"
+          bash ./openssl-ech.sh server --reject &>> "$LOG_FILE"
+
+          echo -e "\nTesting rejection with OpenSSL client and wolfSSL server\n" &>> "$LOG_FILE"
+          bash ./openssl-ech.sh client --reject &>> "$LOG_FILE"
+
           # cleanup
           rm -f "$LOG_FILE"