diff options
author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2011-11-05 08:22:25 +0100 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2011-11-05 08:22:25 +0100 |
commit | 28602012b231b2836214b2239936d6b06f9e7769 (patch) | |
tree | af9cee3281ce9f58895e419929ef96e76bf88f15 /tests | |
parent | f5a7e3a9e3564db739b72e208e1daba711a379f1 (diff) | |
download | gnutls-28602012b231b2836214b2239936d6b06f9e7769.tar.gz |
Added tests for null ciphersuites.
Diffstat (limited to 'tests')
-rwxr-xr-x | tests/suite/testcompat-main | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/tests/suite/testcompat-main b/tests/suite/testcompat-main index 22eb0390ca..2c7223334f 100755 --- a/tests/suite/testcompat-main +++ b/tests/suite/testcompat-main @@ -87,6 +87,19 @@ $CLI $DEBUG -p $PORT 127.0.0.1 --priority "NONE:+CIPHER-ALL:+SIGN-ALL:+COMP-NULL kill $PID wait +#-cipher RSA-NULL +launch_bare_server $$ s_server -cipher NULL -quiet -www -accept $PORT -keyform pem -certform pem -tls1 -dhparam params.dh -key $RSA_KEY -cert $RSA_CERT -Verify 1 -CAfile $CA_CERT & +PID=$! +wait_server $PID + +# Test TLS 1.0 with RSA-NULL ciphersuite +echo "Checking TLS 1.0 with RSA-NULL..." +$CLI $DEBUG -p $PORT 127.0.0.1 --priority "NONE:+NULL:+SIGN-ALL:+COMP-NULL:+MAC-ALL:+VERS-TLS1.0:+RSA" --insecure --x509certfile $CLI_CERT --x509keyfile $CLI_KEY </dev/null >/dev/null || \ + fail $PID "Failed" + +kill $PID +wait + #-cipher RSA-AES128-SHA:DHE-DSS-AES128-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-AES128-SHA launch_bare_server $$ s_server -quiet -www -accept $PORT -keyform pem -certform pem -tls1 -dhparam params.dh -key $RSA_KEY -cert $RSA_CERT -dkey $DSA_KEY -dcert $DSA_CERT -Verify 1 -CAfile $CA_CERT & PID=$! @@ -231,6 +244,16 @@ wait #kill $PID #wait +echo "Check TLS 1.0 with RSA-NULL ciphersuite" +launch_server $$ --priority "NONE:+NULL:+SIGN-ALL:+COMP-NULL:+MAC-ALL:+VERS-TLS1.0:+RSA:+DHE-RSA" --x509certfile $SERV_CERT --x509keyfile $SERV_KEY --x509cafile $CA_CERT --dhparams params.dh & PID=$! +wait_server $PID + +$OPENSSL_CLI s_client -cipher NULL-SHA -host localhost -tls1 -port $PORT -cert $CLI_CERT -key $CLI_KEY -CAfile $CA_CERT </dev/null 2>&1 | grep "\:error\:" && \ + fail $PID "Failed" + +kill $PID +wait + echo "Check TLS 1.0 with DHE-RSA ciphersuite" launch_server $$ --priority "NONE:+CIPHER-ALL:+SIGN-ALL:+COMP-NULL:+MAC-ALL:+VERS-TLS1.0:+DHE-RSA" --x509certfile $SERV_CERT --x509keyfile $SERV_KEY --x509cafile $CA_CERT --dhparams params.dh & PID=$! wait_server $PID |