54d028aa0f
Commit b3618f44 added a test for mac-then-encrypt. However the test fails
when running with "enable-tls1_3". The problem is that the test creates a
connection, which ends up being TLSv1.3. However it also restricts the
ciphers to a single mac-then-encrypt ciphersuite that is not TLSv1.3
compatible so the connection aborts and the test fails. Mac-then-encrypt
is not relevant to TLSv1.3, so the test should disable that protocol
version.
Reviewed-by: Emilia Käsper <emilia@openssl.org>
95 lines
2.4 KiB
Perl
95 lines
2.4 KiB
Perl
# -*- mode: perl; -*-
|
|
# Copyright 2016-2016 The OpenSSL Project Authors. All Rights Reserved.
|
|
#
|
|
# Licensed under the OpenSSL license (the "License"). You may not use
|
|
# this file except in compliance with the License. You can obtain a copy
|
|
# in the file LICENSE in the source distribution or at
|
|
# https://www.openssl.org/source/license.html
|
|
|
|
|
|
## SSL test configurations
|
|
|
|
package ssltests;
|
|
|
|
our @tests = (
|
|
{
|
|
name => "disable-encrypt-then-mac-server-sha",
|
|
server => {
|
|
"Options" => "-EncryptThenMac",
|
|
},
|
|
client => {
|
|
"CipherString" => "AES128-SHA",
|
|
"MaxProtocol" => "TLSv1.2"
|
|
},
|
|
test => {
|
|
"ExpectedResult" => "Success",
|
|
},
|
|
},
|
|
{
|
|
name => "disable-encrypt-then-mac-client-sha",
|
|
server => {
|
|
},
|
|
client => {
|
|
"CipherString" => "AES128-SHA",
|
|
"Options" => "-EncryptThenMac",
|
|
"MaxProtocol" => "TLSv1.2"
|
|
},
|
|
test => {
|
|
"ExpectedResult" => "Success",
|
|
},
|
|
},
|
|
{
|
|
name => "disable-encrypt-then-mac-both-sha",
|
|
server => {
|
|
"Options" => "-EncryptThenMac",
|
|
},
|
|
client => {
|
|
"CipherString" => "AES128-SHA",
|
|
"Options" => "-EncryptThenMac",
|
|
"MaxProtocol" => "TLSv1.2"
|
|
},
|
|
test => {
|
|
"ExpectedResult" => "Success",
|
|
},
|
|
},
|
|
{
|
|
name => "disable-encrypt-then-mac-server-sha2",
|
|
server => {
|
|
"Options" => "-EncryptThenMac",
|
|
"MaxProtocol" => "TLSv1.2"
|
|
},
|
|
client => {
|
|
"CipherString" => "AES128-SHA256",
|
|
},
|
|
test => {
|
|
"ExpectedResult" => "Success",
|
|
},
|
|
},
|
|
{
|
|
name => "disable-encrypt-then-mac-client-sha2",
|
|
server => {
|
|
},
|
|
client => {
|
|
"CipherString" => "AES128-SHA256",
|
|
"Options" => "-EncryptThenMac",
|
|
"MaxProtocol" => "TLSv1.2"
|
|
},
|
|
test => {
|
|
"ExpectedResult" => "Success",
|
|
},
|
|
},
|
|
{
|
|
name => "disable-encrypt-then-mac-both-sha2",
|
|
server => {
|
|
"Options" => "-EncryptThenMac",
|
|
},
|
|
client => {
|
|
"CipherString" => "AES128-SHA256",
|
|
"Options" => "-EncryptThenMac",
|
|
"MaxProtocol" => "TLSv1.2"
|
|
},
|
|
test => {
|
|
"ExpectedResult" => "Success",
|
|
},
|
|
},
|
|
);
|