wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/test/ssl-tests
History
Benjamin Kaduk f55e99f7dd Add TLS 1.3 draft-23 PSS signature algorithms 
We now have a split in the signature algorithms codepoint space for
whether the certificate's key is for rsaEncryption or a PSS-specific
key, which should let us get rid of some special-casing that we
previously needed to try to coax rsaEncryption keys into performing PSS.
(This will be done in a subsequent commit.)

Send the new PSS-with-PSS-specific key first in our list, so that
we prefer the new technology to the old one.

We need to update the expected certificate type in one test,
since the "RSA-PSS+SHA256" form now corresponds to a public key
of type rsaEncryption, so we should expect the server certificate
type to be just "RSA".  If we want to get a server certificate
type of "RSA-PSS", we need to use a new signature algorithm
that cannot be represented as signature+hash, so add a test for that
as well.

Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5068)
2018-01-25 12:05:54 -06:00
..
01-simple.conf
01-simple.conf.in
02-protocol-version.conf
02-protocol-version.conf.in
03-custom_verify.conf
03-custom_verify.conf.in
04-client_auth.conf
04-client_auth.conf.in
05-sni.conf Rename SSL_CTX_set_early_cb to SSL_CTX_set_client_hello_cb. 2017-09-08 13:58:59 -05:00
05-sni.conf.in Rename SSL_CTX_set_early_cb to SSL_CTX_set_client_hello_cb. 2017-09-08 13:58:59 -05:00
06-sni-ticket.conf Session resume broken switching contexts 2017-10-04 10:21:08 +10:00
06-sni-ticket.conf.in Session resume broken switching contexts 2017-10-04 10:21:08 +10:00
07-dtls-protocol-version.conf
07-dtls-protocol-version.conf.in
08-npn.conf
08-npn.conf.in
09-alpn.conf
09-alpn.conf.in
10-resumption.conf
10-resumption.conf.in
11-dtls_resumption.conf
11-dtls_resumption.conf.in
12-ct.conf
12-ct.conf.in
13-fragmentation.conf Implement Maximum Fragment Length TLS extension. 2017-11-05 17:46:48 +01:00
13-fragmentation.conf.in Copyright update of more files that have changed this year 2018-01-19 13:34:03 +01:00
14-curves.conf
14-curves.conf.in
15-certstatus.conf
15-certstatus.conf.in
16-certstatus.conf
16-dtls-certstatus.conf
16-dtls-certstatus.conf.in
17-renegotiate.conf Fix #2400 Add NO_RENEGOTIATE option 2017-06-06 22:39:41 +01:00
17-renegotiate.conf.in Fix #2400 Add NO_RENEGOTIATE option 2017-06-06 22:39:41 +01:00
18-dtls-renegotiate.conf
18-dtls-renegotiate.conf.in
19-mac-then-encrypt.conf
19-mac-then-encrypt.conf.in
20-cert-select.conf Add TLS 1.3 draft-23 PSS signature algorithms 2018-01-25 12:05:54 -06:00
20-cert-select.conf.in Add TLS 1.3 draft-23 PSS signature algorithms 2018-01-25 12:05:54 -06:00
21-key-update.conf
21-key-update.conf.in
22-compression.conf
22-compression.conf.in
23-srp.conf
23-srp.conf.in
24-padding.conf TLS1.3 Padding 2017-05-02 09:44:43 +01:00
24-padding.conf.in TLS1.3 Padding 2017-05-02 09:44:43 +01:00
25-cipher.conf Don't expect a POLY1305 ciphersuite when using no-poly1305 2017-12-11 09:41:59 +00:00
25-cipher.conf.in Fix no-chacha 2017-12-11 09:41:59 +00:00
protocol_version.pm
ssltests_base.pm