Manuel Pégourié-Gonnard
a4afadfccd
Fix bug in OpenSSL v2 support testing
2014-08-30 22:09:36 +02:00
Manuel Pégourié-Gonnard
644e8f377d
Adapt debug_level in ssl-opt.sh to new levels
...
The meaning of debug_level was shift by one during the last debug overhaul.
(The new one is more rational, previously debug_level=1 didn't do anything.)
2014-08-30 21:59:31 +02:00
Manuel Pégourié-Gonnard
8e03c71b23
Normalize names in ssl-opt.sh
...
No numbering: does not add value, and painful to maintain, esp. with branches
2014-08-30 21:42:40 +02:00
Manuel Pégourié-Gonnard
51362961b8
Add interop testing of renegotiation
2014-08-30 21:22:47 +02:00
Manuel Pégourié-Gonnard
f2629b965e
Rm now useless tricks from ssl-opt.sh
2014-08-30 14:20:14 +02:00
Manuel Pégourié-Gonnard
480905d563
Fix selection of hash from sig_alg ClientHello ext.
2014-08-30 14:19:59 +02:00
Manuel Pégourié-Gonnard
baa7f07809
Add GnuTLS support to ssl-opt.sh
2014-08-20 20:15:53 +02:00
Manuel Pégourié-Gonnard
f07f421759
Fix server-initiated renego with non-blocking I/O
2014-08-19 13:32:15 +02:00
Manuel Pégourié-Gonnard
a8c0a0dbd0
Add "exchanges" option to test server and client
...
Goal is to test renegotiation better: we need more than one exchange for
server-initiated renego to work reliably (the previous hack for this wouldn't
work with non-blocking I/O and probably not with DTLS either).
Also check message termination in a semi-realistic way.
2014-08-19 13:26:05 +02:00
Manuel Pégourié-Gonnard
6591962f06
Allow delay on renego on client
...
Currently unbounded: will be fixed later
2014-08-19 12:50:30 +02:00
Manuel Pégourié-Gonnard
74b11702d7
Simplify terminating ssl_server2 in test scripts
2014-08-14 18:33:00 +02:00
Manuel Pégourié-Gonnard
6f4fbbb3e1
Add a "skip" feature in ssl-opt.sh
2014-08-14 18:33:00 +02:00
Manuel Pégourié-Gonnard
e73b26391d
Add config-full to all.sh
2014-08-14 11:34:34 +02:00
Manuel Pégourié-Gonnard
fae355e8ee
Add tests for ssl_set_renegotiation_enforced()
2014-07-04 14:32:27 +02:00
Manuel Pégourié-Gonnard
a9964dbcd5
Add ssl_set_renegotiation_enforced()
2014-07-04 14:16:07 +02:00
Manuel Pégourié-Gonnard
8920f69fef
Add test for packets of max size
2014-06-25 11:26:12 +02:00
Manuel Pégourié-Gonnard
ee415031e5
Add tests for small packets
...
Some truncated HMAC test failing right now.
2014-06-25 11:26:11 +02:00
Manuel Pégourié-Gonnard
fab2a3c3d6
Fix port selection in ssl test scripts
...
Port was selected in the 1000-1999 range which is bad (system ports).
2014-06-23 11:54:57 +02:00
Manuel Pégourié-Gonnard
0c1ec479fe
Make ssl-opt.sh faster and more robust
2014-06-20 20:03:33 +02:00
Manuel Pégourié-Gonnard
bbcb1ce703
Revert "Avoid sleep 1 at server start in ssl-opt.sh"
...
This reverts commit db2a6c1a20
.
Does not seem to work as expected on the buildbots. Reverted while
investigating, since it had no other used than speeding up the test script.
2014-06-13 18:05:23 +02:00
Paul Bakker
14c78c93d5
Merge more SSL tests and required ssl_server2 additions
2014-06-12 21:24:34 +02:00
Manuel Pégourié-Gonnard
95c0a63023
Add tests for ssl_get_bytes_avail()
2014-06-11 18:34:47 +02:00
Manuel Pégourié-Gonnard
90805a8d01
Add test for ssl_set_ciphersuites_for_version()
2014-06-11 14:08:10 +02:00
Manuel Pégourié-Gonnard
10c3c9fda8
Add test for PSK without a key
2014-06-10 15:32:02 +02:00
Manuel Pégourié-Gonnard
a6781c99ee
Add tests for PSK callback
2014-06-10 15:32:02 +02:00
Manuel Pégourié-Gonnard
0cc7e31ad1
Add test for ssl_set_dh_param_ctx()
2014-06-10 15:32:01 +02:00
Manuel Pégourié-Gonnard
db2a6c1a20
Avoid sleep 1 at server start in ssl-opt.sh
...
On my machine, brings running time from 135 to 45 seconds...
3 times faster :)
2014-05-29 12:15:40 +02:00
Manuel Pégourié-Gonnard
32f8f4d1a0
Catch SERVERQUIT timeout in ssl test scripts
2014-05-29 11:57:44 +02:00
Manuel Pégourié-Gonnard
bc3b16c7e2
Also use unique names for temp files
2014-05-29 11:57:43 +02:00
Manuel Pégourié-Gonnard
8066b81a54
Pick a "unique" port in SSL test scripts
2014-05-29 11:57:43 +02:00
Paul Bakker
1ebc0c592c
Fix typos
2014-05-22 15:47:58 +02:00
Manuel Pégourié-Gonnard
17cde5f8ef
Fix ssl-opt.sh for new ciphersuites order
2014-05-22 14:42:39 +02:00
Manuel Pégourié-Gonnard
0408fd1fbb
Add extendedKeyUsage checking in SSL modules
2014-04-11 11:09:09 +02:00
Manuel Pégourié-Gonnard
a9db85df73
Add tests for keyUsage with client auth
2014-04-09 15:50:58 +02:00
Manuel Pégourié-Gonnard
7f2a07d7b2
Check keyUsage in SSL client and server
2014-04-09 15:50:57 +02:00
Paul Bakker
17b85cbd69
Merged additional tests and improved code coverage
...
Conflicts:
ChangeLog
2014-04-08 14:38:48 +02:00
Manuel Pégourié-Gonnard
83d8c73c91
Disable ALPN by default
2014-04-07 13:24:21 +02:00
Manuel Pégourié-Gonnard
f6521de17b
Add ALPN tests to ssl-opt.sh
...
Only self-op for now, required peer versions are a bit high:
- OpenSSL 1.0.2-beta
- GnuTLS 3.2.0 (released 2013-05-10) (gnutls-cli only)
2014-04-07 12:42:04 +02:00
Manuel Pégourié-Gonnard
913030c286
Enable SSLv2 testing if OPENSSL_CMD is set
2014-04-04 16:33:01 +02:00
Manuel Pégourié-Gonnard
00d538f8f9
Disable renegotiation by default in example cli/srv
2014-03-31 11:03:06 +02:00
Manuel Pégourié-Gonnard
76b8ab73cd
ssl-opt.sh: address some robustness issues
2014-03-26 14:21:34 +01:00
Manuel Pégourié-Gonnard
e01af4cd37
Tune compat.sh and ssl-opt.sh error reporting
2014-03-26 12:58:48 +01:00
Manuel Pégourié-Gonnard
417d46cdb0
Add --filter, --exclude to ssl-opt.sh
2014-03-14 08:41:02 +01:00
Manuel Pégourié-Gonnard
74faf3c400
Fix usage of environment variables for commands
2014-03-14 08:41:02 +01:00
Manuel Pégourié-Gonnard
84fd6877c6
Use ssl_client2 to terminate ssl_server2
2014-03-14 08:41:02 +01:00
Manuel Pégourié-Gonnard
ba0b8442f0
compat.sh and ssl-opt.sh cosmetics
...
- do not print '0 memory errors' when memcheck was not used
- add commands to the log files
2014-03-14 08:41:02 +01:00
Manuel Pégourié-Gonnard
3eec60402f
Add memcheck support to compat.sh
2014-03-14 08:41:02 +01:00
Manuel Pégourié-Gonnard
de515ccdf5
Add tests for client w/o certificate
2014-03-14 08:41:02 +01:00
Manuel Pégourié-Gonnard
f7a2690561
Make the openssl command configurable in sh tests
2014-03-14 08:41:02 +01:00
Manuel Pégourié-Gonnard
9dea8bd658
Minor compat.sh clean-up
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
c73339fd50
Add a --memcheck option to ssl-opt.sh
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
a3d808e140
Add tests for version bounds
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
0b6609b34c
Add tests for non-blocking I/O
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
db735f67b9
Add tests for sess-id-based resume with OpenSSL
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
fccd3255f9
Add tests for tickets with OpenSSL
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
677884d174
Add a few checks in ssl-opt.sh
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
a9062e96e7
shell scripts: clean up when exiting on signal
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
c1da664e89
Add test for SSLv2 ClientHello
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
96ea2f2557
Add tests for SNI
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
4145b89091
compat.sh cosmetics
2014-03-14 08:41:01 +01:00
Manuel Pégourié-Gonnard
8520dac292
Add tests for auth_mode
2014-03-14 08:41:00 +01:00
Manuel Pégourié-Gonnard
33a752e180
ssl-opt.sh: count and report failures
2014-03-14 08:41:00 +01:00
Manuel Pégourié-Gonnard
f8bdbb5d62
ssl-opt.sh: cosmetics
2014-03-14 08:41:00 +01:00
Manuel Pégourié-Gonnard
dbe1ee1988
Add tests for session ticket lifetime
2014-03-14 08:41:00 +01:00
Manuel Pégourié-Gonnard
c55a5b7d6f
Add tests for cache timeout
2014-03-14 08:41:00 +01:00
Manuel Pégourié-Gonnard
4c88345f19
Add test for ssl_cache max_entries
2014-03-14 08:41:00 +01:00
Manuel Pégourié-Gonnard
780d671f9d
Add tests for renegotiation
2014-03-14 08:41:00 +01:00
Manuel Pégourié-Gonnard
de14378a53
Add tests for max fragment length extension
2014-03-14 08:41:00 +01:00
Manuel Pégourié-Gonnard
f7c52014ec
Add basic tests for session resumption
2014-03-14 08:41:00 +01:00
Manuel Pégourié-Gonnard
eaadc508fb
New ssl-opt.sh test script
2014-03-14 08:41:00 +01:00