diff options
author | tb <> | 2023-01-27 08:28:36 +0000 |
---|---|---|
committer | tb <> | 2023-01-27 08:28:36 +0000 |
commit | 6738561f9181a99b8aa084f27caeea50afddc836 (patch) | |
tree | 8c840e3c446da9e4d3e54e0fceea866197047f66 /src/regress/lib/libssl/interop/cert | |
parent | 5eb039b0fc4e1e87f2b77fc8150abd2c9f9f518b (diff) | |
download | openbsd-6738561f9181a99b8aa084f27caeea50afddc836.tar.gz openbsd-6738561f9181a99b8aa084f27caeea50afddc836.tar.bz2 openbsd-6738561f9181a99b8aa084f27caeea50afddc836.zip |
Add openssl 3.0 interop tests
The plan is to retire the 1.0.2 interop tests soon so as to be able to
drop the dead and dangerous OpenSSL 1.0.2 port.
The cert part is extremely slow on arm64: the whole interop test on an m1
is about 10x slower (~45 min!) than on a modern amd64 laptop, so people
running regress may want to wait a bit with adding OpenSSL 3 to their test
boxes until this is sorted out.
Diffstat (limited to 'src/regress/lib/libssl/interop/cert')
-rw-r--r-- | src/regress/lib/libssl/interop/cert/Makefile | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/src/regress/lib/libssl/interop/cert/Makefile b/src/regress/lib/libssl/interop/cert/Makefile index 6698975d7e..6156a988ae 100644 --- a/src/regress/lib/libssl/interop/cert/Makefile +++ b/src/regress/lib/libssl/interop/cert/Makefile | |||
@@ -1,7 +1,7 @@ | |||
1 | # $OpenBSD: Makefile,v 1.7 2021/09/03 11:58:24 bluhm Exp $ | 1 | # $OpenBSD: Makefile,v 1.8 2023/01/27 08:28:36 tb Exp $ |
2 | 2 | ||
3 | # Connect a client to a server. Both can be current libressl, or | 3 | # Connect a client to a server. Both can be current libressl, or |
4 | # openssl 1.0.2, or openssl 1.1. Create client and server certificates | 4 | # openssl 1.0.2, 1.1, or 3.0. Create client and server certificates |
5 | # that are signed by a CA and not signed by a fake CA. Try all | 5 | # that are signed by a CA and not signed by a fake CA. Try all |
6 | # combinations with, without, and with wrong CA for client and server | 6 | # combinations with, without, and with wrong CA for client and server |
7 | # and check the result of certificate verification. | 7 | # and check the result of certificate verification. |
@@ -13,6 +13,9 @@ LIBRARIES += openssl | |||
13 | .if exists(/usr/local/bin/eopenssl11) | 13 | .if exists(/usr/local/bin/eopenssl11) |
14 | LIBRARIES += openssl11 | 14 | LIBRARIES += openssl11 |
15 | .endif | 15 | .endif |
16 | .if exists(/usr/local/bin/eopenssl30) | ||
17 | LIBRARIES += openssl30 | ||
18 | .endif | ||
16 | 19 | ||
17 | .for cca in noca ca fakeca | 20 | .for cca in noca ca fakeca |
18 | .for sca in noca ca fakeca | 21 | .for sca in noca ca fakeca |