Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | tests: rewrite launch_server using launch_bare_server | Daiki Ueno | 2020-10-03 | 1 | -72/+70 |
| | | | | Signed-off-by: Daiki Ueno <ueno@gnu.org> | ||||
* | tests: remove unused first argument from launch_server | Daiki Ueno | 2020-09-25 | 1 | -52/+52 |
| | | | | Signed-off-by: Daiki Ueno <ueno@gnu.org> | ||||
* | tests: use ": ${FOO=BAR}" syntax for default handling in shell scripts | Daiki Ueno | 2020-09-25 | 1 | -3/+3 |
| | | | | Signed-off-by: Daiki Ueno <ueno@gnu.org> | ||||
* | testcompat-openssl: specify -sigalgs | Daiki Ueno | 2020-09-21 | 1 | -5/+7 |
| | | | | | | | | | The default selection of signature schemes is also affected by the crypto-policies, and needs to be explicitly enabled with -sigalgs. Suggested by Tomas Mraz. Signed-off-by: Daiki Ueno <ueno@gnu.org> | ||||
* | testcompat-openssl: improve testing against secured OpenSSL versions. | Dimitri John Ledkov | 2020-02-06 | 1 | -40/+33 |
| | | | | | | | | | In Debian, and soon Ubuntu, OpenSSL is compiled with SECLEVEL=2 and requiring minimum TLSv1.2. However, smaller hashes/keys/versions are allowed if one enables SECLEVEL=1. Do so when testing pre v1.2 algos, and thus enabling testing more compatability combinations. Signed-off-by: Dimitri John Ledkov <xnox@ubuntu.com> | ||||
* | testcompat-openssl: added interop test with DTLS 1.2 | Nikos Mavrogiannopoulos | 2019-07-03 | 1 | -2/+89 |
| | | | | | | | | This tests AES-CBC ciphersuites in isolation, as they are prioritized lower than AES-GCM. We want to test them explicitly because they have different behavior under EtM. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | testcompat-openssl: do not test DSS or small curves with 1.1.1tmp-fix-ci-runs | Nikos Mavrogiannopoulos | 2018-11-07 | 1 | -25/+39 |
| | | | | | | | DSA uses 1024-bit parameters, and these together with curves of less than 256 bits are not accepted by debian's openssl. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: fix serv location in testcompat-main-openssl | Nikos Mavrogiannopoulos | 2018-05-16 | 1 | -1/+1 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | Allow running of test against installed gnutls-serv | Andreas Metzler | 2018-05-15 | 1 | -1/+2 |
| | | | | Signed-off-by: Andreas Metzler <ametzler@bebt.de> | ||||
* | tests: testcompat-openssl: disable DSS ciphersuites under SSL3.0 | Nikos Mavrogiannopoulos | 2018-05-09 | 1 | -59/+64 |
| | | | | | | | | Previously if openssl wouldn't support DSS, we would only disable DSS under TLS1.0 or later, not under SSL 3.0. This fixes interoperability with Fedora28 openssl. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | tests: added reproducer for safe renegotiation failure with openssl | Nikos Mavrogiannopoulos | 2017-09-07 | 1 | -1/+13 |
| | | | | | | Relates #259 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: enhanced SSL3.0 openssl detection in testcompat-openssl | Nikos Mavrogiannopoulos | 2017-07-17 | 1 | -8/+25 |
| | | | | | | | | That disables SSL 3.0 testing in openssl versions which cannot negotiated it (see https://bugzilla.redhat.com/show_bug.cgi?id=1471783 for rationale) and corrects a typo in the variable name and printed message. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: disable ARCFOUR interop tests if openssl doesn't support the cipher | Nikos Mavrogiannopoulos | 2017-07-17 | 1 | -12/+21 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: testcompat-openssl: 3DES is explicitly enabled for SSL 3.0 | Nikos Mavrogiannopoulos | 2017-07-17 | 1 | -6/+6 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: enabled X25519 interop tests with openssl 1.1.0 | Nikos Mavrogiannopoulos | 2017-06-19 | 1 | -13/+29 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | tests: modify tests to allow signatures with SHA1 | Nikos Mavrogiannopoulos | 2017-05-31 | 1 | -2/+2 |
| | | | | | | | There were several tests that were utilizing SHA1 signatures but were not failing due to the bug in gnutls_pubkey_verify_hash2(). Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: remove bash usage | Alon Bar-Lev | 2017-01-05 | 1 | -1/+1 |
| | | | | Signed-off-by: Alon Bar-Lev <alon.barlev@gmail.com> | ||||
* | tests: skip tests that requires tools if tools are disabled | Alon Bar-Lev | 2017-01-05 | 1 | -0/+5 |
| | | | | | | building with --disable-tools should not cause test failure. Signed-off-by: Alon Bar-Lev <alon.barlev@gmail.com> | ||||
* | tests: enable all the ciphersuite in openssl cli for DSS checksfix-compat-tests | Nikos Mavrogiannopoulos | 2016-12-31 | 1 | -3/+3 |
| | |||||
* | tests: don't check against 3DES if disabled in openssl | Nikos Mavrogiannopoulos | 2016-12-31 | 1 | -3/+8 |
| | |||||
* | tests: do not pass the -dhparams to openssl 1.1.0; it doesn't work | Nikos Mavrogiannopoulos | 2016-12-31 | 1 | -1/+8 |
| | |||||
* | tests: corrected type in openssl compat tests | Nikos Mavrogiannopoulos | 2016-12-31 | 1 | -2/+2 |
| | |||||
* | tests: added common variable for DH parameters | Nikos Mavrogiannopoulos | 2016-12-31 | 1 | -23/+23 |
| | |||||
* | tests: better termination checking in compat tests | Nikos Mavrogiannopoulos | 2016-12-31 | 1 | -2/+15 |
| | | | | | This ensures that the exit code of all spawned processes is checked. | ||||
* | tests: run compatibility checks in parallel for various modifiers | Nikos Mavrogiannopoulos | 2016-05-21 | 1 | -68/+79 |
| | | | | | | That is, the various %NO_ETM, %COMPAT, ... modifiers are checked in parallel in the testcompat suite, reducing the overall running time significantly. | ||||
* | tests: use /bin/bash in tests which require common.sh | Nikos Mavrogiannopoulos | 2016-05-20 | 1 | -1/+1 |
| | |||||
* | Allow for conditional compilation of SSL 3.0 protocol | Nikos Mavrogiannopoulos | 2016-05-14 | 1 | -2/+2 |
| | | | | | | | This allows to completely remove SSL 3.0 support by calling configure with the '--disable-ssl3' option. Resolves #93 | ||||
* | tests: simplified server launching process | Nikos Mavrogiannopoulos | 2016-05-13 | 1 | -49/+91 |
| | | | | | Also attempt to use a new port on every started server and added a waiting period for the port to become re-usable. | ||||
* | tests: include self tests with CURVE-X25519 | Nikos Mavrogiannopoulos | 2016-04-24 | 1 | -63/+112 |
| | |||||
* | tests: updated the openssl compat check to make explicit the used curves | Nikos Mavrogiannopoulos | 2016-04-24 | 1 | -23/+32 |
| | |||||
* | testcompat-openssl: enable TLS 1.2 tests with openssl 1.0.1+ | Nikos Mavrogiannopoulos | 2016-03-18 | 1 | -7/+7 |
| | |||||
* | tests: tab indent + minor style changes | Alon Bar-Lev | 2015-06-24 | 1 | -502/+525 |
| | | | | Signed-off-by: Alon Bar-Lev <alon.barlev@gmail.com> | ||||
* | tests: suite: cleanup shell usage | Alon Bar-Lev | 2015-06-21 | 1 | -501/+491 |
| | | | | | | | | | | | | Add quotes for most usages of variables. Added ${} for variables. Cleanup indentation to be consistent with other tests. Fix separate builddir issues. Signed-off-by: Alon Bar-Lev <alon.barlev@gmail.com> | ||||
* | tests: check also individual ciphers for interoperability | Nikos Mavrogiannopoulos | 2015-06-11 | 1 | -4/+24 |
| | |||||
* | tests: check legacy RC4 in testcompat | Nikos Mavrogiannopoulos | 2015-03-23 | 1 | -3/+23 |
| | | | | | That would prevent losing compatibility without detecting it. That is currently the case since it is no longer enabled by default. | ||||
* | tests: speed up testcompat check by remove less important options | Nikos Mavrogiannopoulos | 2015-03-05 | 1 | -1/+1 |
| | |||||
* | tests: updated the suite to account for the removal of DSA by default | Nikos Mavrogiannopoulos | 2015-03-03 | 1 | -8/+8 |
| | |||||
* | cross-implementation test suite was relicensed to 3-clause BSD | Nikos Mavrogiannopoulos | 2015-03-03 | 1 | -12/+22 |
| | | | | That way the suite can be used by projects with other licenses. | ||||
* | testcompat: corrected usage of null cipher | Nikos Mavrogiannopoulos | 2014-12-11 | 1 | -1/+1 |
| | |||||
* | testcompat-openssl: disable SSL 3.0 as it is not supported on debian | Nikos Mavrogiannopoulos | 2014-11-06 | 1 | -0/+9 |
| | |||||
* | tests: separated the two testcompat tests (openssl/polarssl) | Nikos Mavrogiannopoulos | 2014-11-06 | 1 | -0/+603 |