TclTLS: Hex Artifact Content

Artifact 9a06c16631bd35fdef22fbbe5411d0e7b338db3747552448b6ac96c138e7a601:

File tests/ssllabs.csv — part of check-in [7f29e7252a] at 2026-01-20 03:02:49 on branch tls-2.0 — Updated tests to fix the remaining failing test cases (user: bohagan, size: 2545) [annotate] [blame] [check-ins using] [more...]
0000: 23 20 47 72 6f 75 70 2c 4e 61 6d 65 2c 43 6f 6e  # Group,Name,Con
0010: 73 74 72 61 69 6e 74 73 2c 53 65 74 75 70 2c 42  straints,Setup,B
0020: 6f 64 79 2c 43 6c 65 61 6e 75 70 2c 4d 61 74 63  ody,Cleanup,Matc
0030: 68 2c 52 65 73 75 6c 74 2c 4f 75 74 70 75 74 2c  h,Result,Output,
0040: 45 72 72 6f 72 20 4f 75 74 70 75 74 2c 52 65 74  Error Output,Ret
0050: 75 72 6e 20 43 6f 64 65 73 0a 63 6f 6d 6d 61 6e  urn Codes.comman
0060: 64 2c 70 61 63 6b 61 67 65 20 70 72 65 66 65 72  d,package prefer
0070: 20 6c 61 74 65 73 74 2c 2c 2c 2c 2c 2c 2c 2c 2c   latest,,,,,,,,,
0080: 0a 63 6f 6d 6d 61 6e 64 2c 70 61 63 6b 61 67 65  .command,package
0090: 20 72 65 71 75 69 72 65 20 74 6c 73 2c 2c 2c 2c   require tls,,,,
00a0: 2c 2c 2c 2c 2c 0a 2c 2c 2c 2c 2c 2c 2c 2c 2c 2c  ,,,,,.,,,,,,,,,,
00b0: 0a 63 6f 6d 6d 61 6e 64 2c 23 20 43 6f 6e 73 74  .command,# Const
00c0: 72 61 69 6e 74 73 2c 2c 2c 2c 2c 2c 2c 2c 2c 0a  raints,,,,,,,,,.
00d0: 63 6f 6d 6d 61 6e 64 2c 73 65 74 20 64 69 72 20  command,set dir 
00e0: 5b 66 69 6c 65 20 6a 6f 69 6e 20 5b 70 77 64 5d  [file join [pwd]
00f0: 20 5b 66 69 6c 65 20 64 69 72 6e 61 6d 65 20 5b   [file dirname [
0100: 69 6e 66 6f 20 73 63 72 69 70 74 5d 5d 5d 2c 2c  info script]]],,
0110: 2c 2c 2c 2c 2c 2c 2c 0a 63 6f 6d 6d 61 6e 64 2c  ,,,,,,,.command,
0120: 73 6f 75 72 63 65 20 5b 66 69 6c 65 20 6a 6f 69  source [file joi
0130: 6e 20 24 64 69 72 20 63 6f 6d 6d 6f 6e 2e 74 63  n $dir common.tc
0140: 6c 5d 2c 2c 2c 2c 2c 2c 2c 2c 2c 0a 2c 2c 2c 2c  l],,,,,,,,,.,,,,
0150: 2c 2c 2c 2c 2c 2c 0a 63 6f 6d 6d 61 6e 64 2c 23  ,,,,,,.command,#
0160: 20 48 65 6c 70 65 72 20 66 75 6e 63 74 69 6f 6e   Helper function
0170: 73 2c 2c 2c 2c 2c 2c 2c 2c 2c 0a 63 6f 6d 6d 61  s,,,,,,,,,.comma
0180: 6e 64 2c 73 65 74 20 3a 3a 63 61 66 69 6c 65 20  nd,set ::cafile 
0190: 5b 66 69 6c 65 20 6a 6f 69 6e 20 24 64 69 72 20  [file join $dir 
01a0: 63 65 72 74 73 20 63 61 63 65 72 74 2e 70 65 6d  certs cacert.pem
01b0: 5d 2c 2c 2c 2c 2c 2c 2c 2c 2c 0a 63 6f 6d 6d 61  ],,,,,,,,,.comma
01c0: 6e 64 2c 73 65 74 20 3a 3a 65 6e 76 28 53 53 4c  nd,set ::env(SSL
01d0: 5f 43 45 52 54 5f 46 49 4c 45 29 20 24 3a 3a 63  _CERT_FILE) $::c
01e0: 61 66 69 6c 65 2c 2c 2c 2c 2c 2c 2c 2c 2c 0a 63  afile,,,,,,,,,.c
01f0: 6f 6d 6d 61 6e 64 2c 22 70 72 6f 63 20 63 6f 6e  ommand,"proc con
0200: 6e 65 63 74 20 7b 75 72 6c 7d 20 7b 0a 20 20 20  nect {url} {.   
0210: 20 73 65 74 20 70 6f 72 74 20 34 34 33 0a 20 20   set port 443.  
0220: 20 20 6c 61 73 73 69 67 6e 20 5b 73 70 6c 69 74    lassign [split
0230: 20 24 75 72 6c 20 22 22 3a 22 22 5d 20 75 72 6c   $url "":""] url
0240: 20 70 6f 72 74 0a 20 20 20 20 69 66 20 7b 24 70   port.    if {$p
0250: 6f 72 74 20 65 71 20 22 22 22 22 7d 20 7b 0a 09  ort eq """"} {..
0260: 73 65 74 20 70 6f 72 74 20 34 34 33 0a 20 20 20  set port 443.   
0270: 20 7d 0a 20 20 20 20 73 65 74 20 63 68 20 5b 74   }.    set ch [t
0280: 6c 73 3a 3a 73 6f 63 6b 65 74 20 2d 61 75 74 6f  ls::socket -auto
0290: 73 65 72 76 65 72 6e 61 6d 65 20 31 20 2d 72 65  servername 1 -re
02a0: 71 75 69 72 65 20 31 20 2d 63 61 66 69 6c 65 20  quire 1 -cafile 
02b0: 24 3a 3a 63 61 66 69 6c 65 20 24 75 72 6c 20 24  $::cafile $url $
02c0: 70 6f 72 74 5d 0a 20 20 20 20 69 66 20 7b 5b 63  port].    if {[c
02d0: 61 74 63 68 20 7b 74 6c 73 3a 3a 68 61 6e 64 73  atch {tls::hands
02e0: 68 61 6b 65 20 24 63 68 7d 20 65 72 72 5d 7d 20  hake $ch} err]} 
02f0: 7b 0a 09 63 6c 6f 73 65 20 24 63 68 0a 09 72 65  {..close $ch..re
0300: 74 75 72 6e 20 2d 63 6f 64 65 20 65 72 72 6f 72  turn -code error
0310: 20 24 65 72 72 0a 20 20 20 20 7d 20 65 6c 73 65   $err.    } else
0320: 20 7b 0a 09 63 6c 6f 73 65 20 24 63 68 0a 20 20   {..close $ch.  
0330: 20 20 7d 0a 7d 22 2c 2c 2c 2c 2c 2c 2c 2c 2c 0a    }.}",,,,,,,,,.
0340: 2c 2c 2c 2c 2c 2c 2c 2c 2c 2c 0a 63 6f 6d 6d 61  ,,,,,,,,,,.comma
0350: 6e 64 2c 23 20 63 6c 69 65 6e 74 74 65 73 74 2e  nd,# clienttest.
0360: 73 73 6c 6c 61 62 73 2e 63 6f 6d 20 54 65 73 74  ssllabs.com Test
0370: 73 2c 2c 2c 2c 2c 2c 2c 2c 2c 0a 53 53 4c 4c 61  s,,,,,,,,,.SSLLa
0380: 62 73 2c 43 56 45 2d 32 30 32 30 2d 30 36 30 31  bs,CVE-2020-0601
0390: 20 28 43 75 72 76 65 42 61 6c 6c 29 20 56 75 6c   (CurveBall) Vul
03a0: 6e 65 72 61 62 69 6c 69 74 79 2c 77 69 6e 20 4f  nerability,win O
03b0: 70 65 6e 53 53 4c 31 2e 31 2e 31 2c 2c 63 6f 6e  penSSL1.1.1,,con
03c0: 6e 65 63 74 20 77 77 77 2e 73 73 6c 6c 61 62 73  nect www.ssllabs
03d0: 2e 63 6f 6d 3a 31 30 34 34 36 2c 2c 2c 22 68 61  .com:10446,,,"ha
03e0: 6e 64 73 68 61 6b 65 20 66 61 69 6c 65 64 3a 20  ndshake failed: 
03f0: 63 65 72 74 69 66 69 63 61 74 65 20 76 65 72 69  certificate veri
0400: 66 79 20 66 61 69 6c 65 64 20 64 75 65 20 74 6f  fy failed due to
0410: 20 22 22 73 65 6c 66 20 73 69 67 6e 65 64 20 63   ""self signed c
0420: 65 72 74 69 66 69 63 61 74 65 20 69 6e 20 63 65  ertificate in ce
0430: 72 74 69 66 69 63 61 74 65 20 63 68 61 69 6e 22  rtificate chain"
0440: 22 22 2c 2c 2c 31 0a 53 53 4c 4c 61 62 73 2c 43  "",,,1.SSLLabs,C
0450: 56 45 2d 32 30 32 30 2d 30 36 30 31 20 28 43 75  VE-2020-0601 (Cu
0460: 72 76 65 42 61 6c 6c 29 20 56 75 6c 6e 65 72 61  rveBall) Vulnera
0470: 62 69 6c 69 74 79 2c 77 69 6e 20 21 4f 70 65 6e  bility,win !Open
0480: 53 53 4c 31 2e 31 2e 31 2c 2c 63 6f 6e 6e 65 63  SSL1.1.1,,connec
0490: 74 20 77 77 77 2e 73 73 6c 6c 61 62 73 2e 63 6f  t www.ssllabs.co
04a0: 6d 3a 31 30 34 34 36 2c 2c 2c 22 68 61 6e 64 73  m:10446,,,"hands
04b0: 68 61 6b 65 20 66 61 69 6c 65 64 3a 20 63 65 72  hake failed: cer
04c0: 74 69 66 69 63 61 74 65 20 76 65 72 69 66 79 20  tificate verify 
04d0: 66 61 69 6c 65 64 20 64 75 65 20 74 6f 20 22 22  failed due to ""
04e0: 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74  self-signed cert
04f0: 69 66 69 63 61 74 65 20 69 6e 20 63 65 72 74 69  ificate in certi
0500: 66 69 63 61 74 65 20 63 68 61 69 6e 22 22 22 2c  ficate chain""",
0510: 2c 2c 31 0a 53 53 4c 4c 61 62 73 2c 43 56 45 2d  ,,1.SSLLabs,CVE-
0520: 32 30 32 30 2d 30 36 30 31 20 28 43 75 72 76 65  2020-0601 (Curve
0530: 42 61 6c 6c 29 20 56 75 6c 6e 65 72 61 62 69 6c  Ball) Vulnerabil
0540: 69 74 79 2c 6d 61 63 2c 2c 63 6f 6e 6e 65 63 74  ity,mac,,connect
0550: 20 77 77 77 2e 73 73 6c 6c 61 62 73 2e 63 6f 6d   www.ssllabs.com
0560: 3a 31 30 34 34 36 2c 2c 2c 22 68 61 6e 64 73 68  :10446,,,"handsh
0570: 61 6b 65 20 66 61 69 6c 65 64 3a 20 63 65 72 74  ake failed: cert
0580: 69 66 69 63 61 74 65 20 76 65 72 69 66 79 20 66  ificate verify f
0590: 61 69 6c 65 64 20 64 75 65 20 74 6f 20 22 22 73  ailed due to ""s
05a0: 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69  elf-signed certi
05b0: 66 69 63 61 74 65 20 69 6e 20 63 65 72 74 69 66  ficate in certif
05c0: 69 63 61 74 65 20 63 68 61 69 6e 22 22 22 2c 2c  icate chain""",,
05d0: 2c 31 0a 53 53 4c 4c 61 62 73 2c 43 56 45 2d 32  ,1.SSLLabs,CVE-2
05e0: 30 32 30 2d 30 36 30 31 20 28 43 75 72 76 65 42  020-0601 (CurveB
05f0: 61 6c 6c 29 20 56 75 6c 6e 65 72 61 62 69 6c 69  all) Vulnerabili
0600: 74 79 2c 75 6e 69 78 20 21 6d 61 63 2c 2c 63 6f  ty,unix !mac,,co
0610: 6e 6e 65 63 74 20 77 77 77 2e 73 73 6c 6c 61 62  nnect www.ssllab
0620: 73 2e 63 6f 6d 3a 31 30 34 34 36 2c 2c 2c 22 68  s.com:10446,,,"h
0630: 61 6e 64 73 68 61 6b 65 20 66 61 69 6c 65 64 3a  andshake failed:
0640: 20 64 65 63 6f 64 65 20 65 72 72 6f 72 20 64 75   decode error du
0650: 65 20 74 6f 20 22 22 75 6e 61 62 6c 65 20 74 6f  e to ""unable to
0660: 20 67 65 74 20 6c 6f 63 61 6c 20 69 73 73 75 65   get local issue
0670: 72 20 63 65 72 74 69 66 69 63 61 74 65 22 22 22  r certificate"""
0680: 2c 2c 2c 31 0a 53 53 4c 4c 61 62 73 2c 4c 6f 67  ,,,1.SSLLabs,Log
0690: 6a 61 6d 20 56 75 6c 6e 65 72 61 62 69 6c 69 74  jam Vulnerabilit
06a0: 79 2c 77 69 6e 20 4f 70 65 6e 53 53 4c 33 2e 30  y,win OpenSSL3.0
06b0: 2c 2c 63 6f 6e 6e 65 63 74 20 77 77 77 2e 73 73  ,,connect www.ss
06c0: 6c 6c 61 62 73 2e 63 6f 6d 3a 31 30 34 34 35 2c  llabs.com:10445,
06d0: 2c 2c 22 68 61 6e 64 73 68 61 6b 65 20 66 61 69  ,,"handshake fai
06e0: 6c 65 64 3a 20 63 65 72 74 69 66 69 63 61 74 65  led: certificate
06f0: 20 76 65 72 69 66 79 20 66 61 69 6c 65 64 20 64   verify failed d
0700: 75 65 20 74 6f 20 22 22 75 6e 61 62 6c 65 20 74  ue to ""unable t
0710: 6f 20 67 65 74 20 6c 6f 63 61 6c 20 69 73 73 75  o get local issu
0720: 65 72 20 63 65 72 74 69 66 69 63 61 74 65 22 22  er certificate""
0730: 22 2c 2c 2c 31 0a 53 53 4c 4c 61 62 73 2c 4c 6f  ",,,1.SSLLabs,Lo
0740: 67 6a 61 6d 20 56 75 6c 6e 65 72 61 62 69 6c 69  gjam Vulnerabili
0750: 74 79 2c 75 6e 69 78 20 4f 70 65 6e 53 53 4c 33  ty,unix OpenSSL3
0760: 2e 30 2c 2c 63 6f 6e 6e 65 63 74 20 77 77 77 2e  .0,,connect www.
0770: 73 73 6c 6c 61 62 73 2e 63 6f 6d 3a 31 30 34 34  ssllabs.com:1044
0780: 35 2c 2c 2c 68 61 6e 64 73 68 61 6b 65 20 66 61  5,,,handshake fa
0790: 69 6c 65 64 3a 20 64 68 20 6b 65 79 20 74 6f 6f  iled: dh key too
07a0: 20 73 6d 61 6c 6c 2c 2c 2c 31 0a 53 53 4c 4c 61   small,,,1.SSLLa
07b0: 62 73 2c 4c 6f 67 6a 61 6d 20 56 75 6c 6e 65 72  bs,Logjam Vulner
07c0: 61 62 69 6c 69 74 79 2c 77 69 6e 20 4f 70 65 6e  ability,win Open
07d0: 53 53 4c 33 2e 32 2c 2c 63 6f 6e 6e 65 63 74 20  SSL3.2,,connect 
07e0: 77 77 77 2e 73 73 6c 6c 61 62 73 2e 63 6f 6d 3a  www.ssllabs.com:
07f0: 31 30 34 34 35 2c 2c 2c 68 61 6e 64 73 68 61 6b  10445,,,handshak
0800: 65 20 66 61 69 6c 65 64 3a 20 75 6e 6b 6e 6f 77  e failed: unknow
0810: 6e 20 73 65 63 75 72 69 74 79 20 62 69 74 73 2c  n security bits,
0820: 2c 2c 31 0a 53 53 4c 4c 61 62 73 2c 4c 6f 67 6a  ,,1.SSLLabs,Logj
0830: 61 6d 20 56 75 6c 6e 65 72 61 62 69 6c 69 74 79  am Vulnerability
0840: 2c 75 6e 69 78 20 21 6d 61 63 20 4f 70 65 6e 53  ,unix !mac OpenS
0850: 53 4c 33 2e 32 2c 2c 63 6f 6e 6e 65 63 74 20 77  SL3.2,,connect w
0860: 77 77 2e 73 73 6c 6c 61 62 73 2e 63 6f 6d 3a 31  ww.ssllabs.com:1
0870: 30 34 34 35 2c 2c 2c 68 61 6e 64 73 68 61 6b 65  0445,,,handshake
0880: 20 66 61 69 6c 65 64 3a 20 75 6e 6b 6e 6f 77 6e   failed: unknown
0890: 20 73 65 63 75 72 69 74 79 20 62 69 74 73 2c 2c   security bits,,
08a0: 2c 31 0a 53 53 4c 4c 61 62 73 2c 4c 6f 67 6a 61  ,1.SSLLabs,Logja
08b0: 6d 20 56 75 6c 6e 65 72 61 62 69 6c 69 74 79 2c  m Vulnerability,
08c0: 6d 61 63 20 4f 70 65 6e 53 53 4c 33 2e 32 2c 2c  mac OpenSSL3.2,,
08d0: 63 6f 6e 6e 65 63 74 20 77 77 77 2e 73 73 6c 6c  connect www.ssll
08e0: 61 62 73 2e 63 6f 6d 3a 31 30 34 34 35 2c 2c 2c  abs.com:10445,,,
08f0: 22 68 61 6e 64 73 68 61 6b 65 20 66 61 69 6c 65  "handshake faile
0900: 64 3a 20 75 6e 6b 6e 6f 77 6e 20 73 65 63 75 72  d: unknown secur
0910: 69 74 79 20 62 69 74 73 22 2c 2c 2c 31 0a 53 53  ity bits",,,1.SS
0920: 4c 4c 61 62 73 2c 46 52 45 41 4b 20 56 75 6c 6e  LLabs,FREAK Vuln
0930: 65 72 61 62 69 6c 69 74 79 2c 2c 2c 63 6f 6e 6e  erability,,,conn
0940: 65 63 74 20 77 77 77 2e 73 73 6c 6c 61 62 73 2e  ect www.ssllabs.
0950: 63 6f 6d 3a 31 30 34 34 34 2c 2c 2c 68 61 6e 64  com:10444,,,hand
0960: 73 68 61 6b 65 20 66 61 69 6c 65 64 3a 20 75 6e  shake failed: un
0970: 73 75 70 70 6f 72 74 65 64 20 70 72 6f 74 6f 63  supported protoc
0980: 6f 6c 2c 2c 2c 31 0a 53 53 4c 4c 61 62 73 2c 50  ol,,,1.SSLLabs,P
0990: 4f 4f 44 4c 45 20 56 75 6c 6e 65 72 61 62 69 6c  OODLE Vulnerabil
09a0: 69 74 79 2c 2c 2c 63 6f 6e 6e 65 63 74 20 77 77  ity,,,connect ww
09b0: 77 2e 73 73 6c 6c 61 62 73 2e 63 6f 6d 3a 31 30  w.ssllabs.com:10
09c0: 34 34 33 2c 2c 2c 68 61 6e 64 73 68 61 6b 65 20  443,,,handshake 
09d0: 66 61 69 6c 65 64 3a 20 75 6e 73 75 70 70 6f 72  failed: unsuppor
09e0: 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2c 2c 2c 31  ted protocol,,,1
09f0: 0a                                               .