summaryrefslogtreecommitdiff
path: root/src
diff options
context:
space:
mode:
authorjsing <>2020-05-11 18:20:24 +0000
committerjsing <>2020-05-11 18:20:24 +0000
commitdefec0abb96e1a3973ad4147265194f5f3758381 (patch)
tree518ab99f96f0a5239d845ddfdb19ca9c025f6fba /src
parent8ed7843af36a6b4a5b8f87df523d65e1b6b58ee3 (diff)
downloadopenbsd-defec0abb96e1a3973ad4147265194f5f3758381.tar.gz
openbsd-defec0abb96e1a3973ad4147265194f5f3758381.tar.bz2
openbsd-defec0abb96e1a3973ad4147265194f5f3758381.zip
Revise regress for TLSv1.3 server being enabled.
Diffstat (limited to 'src')
-rw-r--r--src/regress/lib/libssl/interop/libressl/Makefile7
-rw-r--r--src/regress/lib/libssl/interop/netcat/Makefile7
-rw-r--r--src/regress/lib/libssl/interop/session/Makefile4
-rw-r--r--src/regress/lib/libssl/tlsext/tlsexttest.c13
4 files changed, 17 insertions, 14 deletions
diff --git a/src/regress/lib/libssl/interop/libressl/Makefile b/src/regress/lib/libssl/interop/libressl/Makefile
index 868c3c146f..16ec8cf086 100644
--- a/src/regress/lib/libssl/interop/libressl/Makefile
+++ b/src/regress/lib/libssl/interop/libressl/Makefile
@@ -1,4 +1,4 @@
1# $OpenBSD: Makefile,v 1.5 2018/11/11 00:15:04 bluhm Exp $ 1# $OpenBSD: Makefile,v 1.6 2020/05/11 18:20:24 jsing Exp $
2 2
3PROGS = client server 3PROGS = client server
4CPPFLAGS = 4CPPFLAGS =
@@ -28,9 +28,8 @@ run-version-$p: $p-self.out
28 28
29run-protocol-$p: $p-self.out 29run-protocol-$p: $p-self.out
30 @echo '\n======== $@ ========' 30 @echo '\n======== $@ ========'
31 # check that LibreSSL protocol version is TLS 1.2 31 # check that LibreSSL protocol version is TLS 1.3
32 # XXX adapt when LibreSSL supports TLS 1.3 32 grep 'Protocol *: TLSv1.3' $p-self.out
33 grep 'Protocol *: TLSv1.2' $p-self.out
34 33
35.endfor 34.endfor
36 35
diff --git a/src/regress/lib/libssl/interop/netcat/Makefile b/src/regress/lib/libssl/interop/netcat/Makefile
index a9947e600c..ef51d0597e 100644
--- a/src/regress/lib/libssl/interop/netcat/Makefile
+++ b/src/regress/lib/libssl/interop/netcat/Makefile
@@ -1,4 +1,4 @@
1# $OpenBSD: Makefile,v 1.3 2020/01/25 16:03:31 jsing Exp $ 1# $OpenBSD: Makefile,v 1.4 2020/05/11 18:20:24 jsing Exp $
2 2
3LIBRARIES = libressl 3LIBRARIES = libressl
4.if exists(/usr/local/bin/eopenssl) 4.if exists(/usr/local/bin/eopenssl)
@@ -69,9 +69,8 @@ REGRESS_TARGETS += run-protocol-client-${clib}
69 69
70run-protocol-client-${clib}: client-netcat-client-${clib}-server-nc.out 70run-protocol-client-${clib}: client-netcat-client-${clib}-server-nc.out
71 @echo '\n======== $@ ========' 71 @echo '\n======== $@ ========'
72 # check that LibTLS protocol version is TLS 1.2 72 # check that LibTLS protocol version is TLS 1.2 or TLS 1.3
73 # XXX adapt when LibreSSL supports TLS 1.3 73 grep 'Protocol *: TLSv1.[23]' client-netcat-client-${clib}-server-nc.out
74 grep 'Protocol *: TLSv1.2' client-netcat-client-${clib}-server-nc.out
75 74
76.endfor 75.endfor
77 76
diff --git a/src/regress/lib/libssl/interop/session/Makefile b/src/regress/lib/libssl/interop/session/Makefile
index 72062ddaca..a99ab008a6 100644
--- a/src/regress/lib/libssl/interop/session/Makefile
+++ b/src/regress/lib/libssl/interop/session/Makefile
@@ -1,4 +1,4 @@
1# $OpenBSD: Makefile,v 1.4 2020/01/25 16:01:43 jsing Exp $ 1# $OpenBSD: Makefile,v 1.5 2020/05/11 18:20:24 jsing Exp $
2 2
3LIBRARIES = libressl 3LIBRARIES = libressl
4.if exists(/usr/local/bin/eopenssl) 4.if exists(/usr/local/bin/eopenssl)
@@ -8,7 +8,9 @@ LIBRARIES += openssl
8LIBRARIES += openssl11 8LIBRARIES += openssl11
9.endif 9.endif
10 10
11run-session-client-libressl-server-libressl \
11run-session-client-libressl-server-openssl11 \ 12run-session-client-libressl-server-openssl11 \
13run-session-client-openssl11-server-libressl \
12run-session-client-openssl11-server-openssl11: 14run-session-client-openssl11-server-openssl11:
13 @echo '\n======== $@ ========' 15 @echo '\n======== $@ ========'
14 # TLS 1.3 needs some extra setup for session reuse 16 # TLS 1.3 needs some extra setup for session reuse
diff --git a/src/regress/lib/libssl/tlsext/tlsexttest.c b/src/regress/lib/libssl/tlsext/tlsexttest.c
index eb8cef7ef5..3d03c2c0d3 100644
--- a/src/regress/lib/libssl/tlsext/tlsexttest.c
+++ b/src/regress/lib/libssl/tlsext/tlsexttest.c
@@ -1,4 +1,4 @@
1/* $OpenBSD: tlsexttest.c,v 1.35 2020/04/17 17:24:03 jsing Exp $ */ 1/* $OpenBSD: tlsexttest.c,v 1.36 2020/05/11 18:20:01 jsing Exp $ */
2/* 2/*
3 * Copyright (c) 2017 Joel Sing <jsing@openbsd.org> 3 * Copyright (c) 2017 Joel Sing <jsing@openbsd.org>
4 * Copyright (c) 2017 Doug Hogan <doug@openbsd.org> 4 * Copyright (c) 2017 Doug Hogan <doug@openbsd.org>
@@ -1407,6 +1407,7 @@ test_tlsext_ri_server(void)
1407 if ((ssl = SSL_new(ssl_ctx)) == NULL) 1407 if ((ssl = SSL_new(ssl_ctx)) == NULL)
1408 errx(1, "failed to create SSL"); 1408 errx(1, "failed to create SSL");
1409 1409
1410 ssl->version = TLS1_2_VERSION;
1410 if (tlsext_ri_server_needs(ssl)) { 1411 if (tlsext_ri_server_needs(ssl)) {
1411 FAIL("server should not need RI\n"); 1412 FAIL("server should not need RI\n");
1412 goto err; 1413 goto err;
@@ -2812,12 +2813,14 @@ test_tlsext_clienthello_build(void)
2812 return (failure); 2813 return (failure);
2813} 2814}
2814 2815
2815unsigned char tlsext_serverhello_default[] = {}; 2816unsigned char tlsext_serverhello_default[] = {
2817 0x00, 0x06, 0x00, 0x2b, 0x00, 0x02, 0x03, 0x04,
2818};
2816 2819
2817unsigned char tlsext_serverhello_enabled[] = { 2820unsigned char tlsext_serverhello_enabled[] = {
2818 0x00, 0x13, 0xff, 0x01, 0x00, 0x01, 0x00, 0x00, 2821 0x00, 0x10, 0x00, 0x2b, 0x00, 0x02, 0x03, 0x04,
2819 0x05, 0x00, 0x00, 0x00, 0x0b, 0x00, 0x02, 0x01, 2822 0x00, 0x0b, 0x00, 0x02, 0x01, 0x00, 0x00, 0x23,
2820 0x00, 0x00, 0x23, 0x00, 0x00, 2823 0x00, 0x00,
2821}; 2824};
2822 2825
2823static int 2826static int
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-24 13:05:38 +0000