aboutsummaryrefslogtreecommitdiffstats
path: root/src/extra_tests/tls-attacker/README.md
blob: abff9b2c39a352ff77281584fc2e6df4d5c64594 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35

TLS-Attacker testsuite and fuzzing

Extended Botan library tests with TLS-Attacker. https://github.com/RUB-NDS/TLS-Attacker

Testsuite

Contains a testsuite to validate correct TLS server behavior.

Run

setup.sh

to download and build the recent TLS-Attacker version, and generate RSA key pairs.

Run

server_testsuite.sh
server_policytest.sh

to run the tests. Testsuite executes specific TLS handshakes with the Botan server and verifies that the server correctly handles specific TLS versions and cipher suites. The policy test instantiates the Botan server with a specific policy and verifies that the server behaves according to this policy.

Fuzzing

Starts the TLS-Attacker fuzzer against the Botan server.

Run

setup.sh

to download and build the recent TLS-Attacker version, generate RSA key pairs, and re-compile Botan with Address Sanitizer.

Run

server_fuzzer.sh

to start the fuzzer. The fuzzer config is located in config.xml. Per default, one Botan server is started on port 55020, with the generated RSA keys.`