A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=OPENBSD_6_5_BASE 2018-11-11T00:15:04+00:00 2018-11-11T00:15:04+00:00 bluhm 2018-11-11T00:15:04+00:00 urn:sha1:50da4d90eb521ba89a43af23da2b26ada631c4d1 directory. Keep all log files for easier debugging. Name regress target names consistently. 2018-11-10T08:33:45+00:00 bluhm 2018-11-10T08:33:45+00:00 urn:sha1:6bd0566375713b872fa7b3055181d18de32ba11b all combinations of LibreSSL, OpenSSL 1.0.2, and OpenSSL 1.1. It is currently disabled for TLS 1.3 as this needs more setup. 2018-11-09T06:30:41+00:00 bluhm 2018-11-09T06:30:41+00:00 urn:sha1:e3076365506f38e78df5fe822fa92f5279cc68ca Having the three libraries, client and server certificates, missing or invalid CA or certificates, and enforcing peer certificate results in 1944 new test cases. 2018-11-07T20:46:28+00:00 bluhm 2018-11-07T20:46:28+00:00 urn:sha1:66e6452e3c0d468ff4c14e29943eaf35f06862fe server. Check that the highest available TLS version is selected. LibreSSL TLS 1.3 check is disabled until the feature becomes available. 2018-11-07T06:29:26+00:00 bluhm 2018-11-07T06:29:26+00:00 urn:sha1:82e426606d31d6e2709a9ffcc5b7635d463a7c49 and server compile with OpenSSL 1.1. Check runtime version string of SSL library. 2018-11-07T01:08:49+00:00 bluhm 2018-11-07T01:08:49+00:00 urn:sha1:be03b61c1b8f59ccdd34dbe5f6c6b30de697d28b Implement simple SSL client and server in C. Create four binaries by linking them with LibreSSL or OpenSSL. This way API compatibility is tested. Connect and accept with netcat to test protocol compatibility with libtls. Currently OpenSSL 1.0.2p from ports is used. Plan is to move to OpenSSL 1.1 and and test TLS 1.3. idea from beck@; help from jsing@