summaryrefslogtreecommitdiff
path: root/src/regress/lib/libssl/interop/cert
diff options
context:
space:
mode:
authortb <>2023-01-27 08:28:36 +0000
committertb <>2023-01-27 08:28:36 +0000
commit6738561f9181a99b8aa084f27caeea50afddc836 (patch)
tree8c840e3c446da9e4d3e54e0fceea866197047f66 /src/regress/lib/libssl/interop/cert
parent5eb039b0fc4e1e87f2b77fc8150abd2c9f9f518b (diff)
downloadopenbsd-6738561f9181a99b8aa084f27caeea50afddc836.tar.gz
openbsd-6738561f9181a99b8aa084f27caeea50afddc836.tar.bz2
openbsd-6738561f9181a99b8aa084f27caeea50afddc836.zip
Add openssl 3.0 interop tests
The plan is to retire the 1.0.2 interop tests soon so as to be able to drop the dead and dangerous OpenSSL 1.0.2 port. The cert part is extremely slow on arm64: the whole interop test on an m1 is about 10x slower (~45 min!) than on a modern amd64 laptop, so people running regress may want to wait a bit with adding OpenSSL 3 to their test boxes until this is sorted out.
Diffstat (limited to 'src/regress/lib/libssl/interop/cert')
-rw-r--r--src/regress/lib/libssl/interop/cert/Makefile7
1 files changed, 5 insertions, 2 deletions
diff --git a/src/regress/lib/libssl/interop/cert/Makefile b/src/regress/lib/libssl/interop/cert/Makefile
index 6698975d7e..6156a988ae 100644
--- a/src/regress/lib/libssl/interop/cert/Makefile
+++ b/src/regress/lib/libssl/interop/cert/Makefile
@@ -1,7 +1,7 @@
1# $OpenBSD: Makefile,v 1.7 2021/09/03 11:58:24 bluhm Exp $ 1# $OpenBSD: Makefile,v 1.8 2023/01/27 08:28:36 tb Exp $
2 2
3# Connect a client to a server. Both can be current libressl, or 3# Connect a client to a server. Both can be current libressl, or
4# openssl 1.0.2, or openssl 1.1. Create client and server certificates 4# openssl 1.0.2, 1.1, or 3.0. Create client and server certificates
5# that are signed by a CA and not signed by a fake CA. Try all 5# that are signed by a CA and not signed by a fake CA. Try all
6# combinations with, without, and with wrong CA for client and server 6# combinations with, without, and with wrong CA for client and server
7# and check the result of certificate verification. 7# and check the result of certificate verification.
@@ -13,6 +13,9 @@ LIBRARIES += openssl
13.if exists(/usr/local/bin/eopenssl11) 13.if exists(/usr/local/bin/eopenssl11)
14LIBRARIES += openssl11 14LIBRARIES += openssl11
15.endif 15.endif
16.if exists(/usr/local/bin/eopenssl30)
17LIBRARIES += openssl30
18.endif
16 19
17.for cca in noca ca fakeca 20.for cca in noca ca fakeca
18.for sca in noca ca fakeca 21.for sca in noca ca fakeca