diff options
author | Kazuki Yamaguchi <k@rhe.jp> | 2021-02-25 17:28:23 +0900 |
---|---|---|
committer | Kazuki Yamaguchi <k@rhe.jp> | 2021-03-16 19:37:06 +0900 |
commit | a3f97007bbd1012a4b7662b8166118b81b52527a (patch) | |
tree | 4a823205701e927c4650c6ca6de5127de8e35a10 /test/openssl/test_ts.rb | |
parent | 1eb6d8aa63d7ada403adb0db12382d264dea5521 (diff) | |
download | ruby-a3f97007bbd1012a4b7662b8166118b81b52527a.tar.gz |
[ruby/openssl] test: adjust test cases for LibreSSL 3.2.4
LibreSSL 3.2.4 made the certificate verification logic back closer to
pre-3.2.2 one, which is more compatible with OpenSSL.
Part of the fixes added by commit a0e98d48c91f ("Enhance TLS 1.3 support
on LibreSSL 3.2/3.3", 2020-12-03) is required for 3.2.2 and 3.2.3 only
(and ~3.3.1, however 3.3 does not have a stable release yet). Since both
releases are security fix, it should be safe to remove those special
treatment from our test suite.
While we are at it, TestSSL#test_ecdh_curves is split into TLS 1.2 and
TLS 1.3 variants for clarity.
https://github.com/ruby/openssl/commit/a9954bac22
Diffstat (limited to 'test/openssl/test_ts.rb')
-rw-r--r-- | test/openssl/test_ts.rb | 2 |
1 files changed, 0 insertions, 2 deletions
diff --git a/test/openssl/test_ts.rb b/test/openssl/test_ts.rb index 5c2d43ebc9..8e31a7d28d 100644 --- a/test/openssl/test_ts.rb +++ b/test/openssl/test_ts.rb @@ -387,7 +387,6 @@ _end_of_pem_ end def test_verify_ee_wrong_root_no_intermediate - pend "LibreSSL 3.2.2 Timestamp Issue" if libressl?(3, 2, 2) assert_raise(OpenSSL::Timestamp::TimestampError) do ts, req = timestamp_ee ts.verify(req, intermediate_store) @@ -395,7 +394,6 @@ _end_of_pem_ end def test_verify_ee_wrong_root_wrong_intermediate - pend "LibreSSL 3.2.2 Timestamp Issue" if libressl?(3, 2, 2) assert_raise(OpenSSL::Timestamp::TimestampError) do ts, req = timestamp_ee ts.verify(req, intermediate_store, [ca_cert]) |