diff options
| -rw-r--r-- | src/regress/lib/libssl/ssl/testssl | 16 |
1 files changed, 14 insertions, 2 deletions
diff --git a/src/regress/lib/libssl/ssl/testssl b/src/regress/lib/libssl/ssl/testssl index fe633e8797..43efaa6460 100644 --- a/src/regress/lib/libssl/ssl/testssl +++ b/src/regress/lib/libssl/ssl/testssl | |||
| @@ -66,17 +66,29 @@ for protocol in SSLv3 TLSv1.2; do | |||
| 66 | done | 66 | done |
| 67 | done | 67 | done |
| 68 | for protocol in TLSv1.3; do | 68 | for protocol in TLSv1.3; do |
| 69 | echo "Testing ciphersuites for $protocol" | 69 | echo "Testing ciphersuites for $protocol at security level 2" |
| 70 | for cipher in `$openssl ciphers -v "$protocol" | | 70 | for cipher in `$openssl ciphers -v "$protocol" | |
| 71 | awk "/ $protocol / { print \\$1 }"`; do | 71 | awk "/ $protocol / { print \\$1 }"`; do |
| 72 | echo "Testing $cipher" | 72 | echo "Testing $cipher" |
| 73 | $ssltest -cipher $cipher | 73 | $ssltest -cipher $cipher -seclevel 2 |
| 74 | if [ $? -ne 0 ] ; then | 74 | if [ $? -ne 0 ] ; then |
| 75 | echo "Failed $cipher" | 75 | echo "Failed $cipher" |
| 76 | exit 1 | 76 | exit 1 |
| 77 | fi | 77 | fi |
| 78 | done | 78 | done |
| 79 | done | 79 | done |
| 80 | for protocol in TLSv1.3; do | ||
| 81 | echo "Testing ciphersuites for $protocol at security level 3" | ||
| 82 | for cipher in `$openssl ciphers -v "$protocol" | | ||
| 83 | awk "/ $protocol / { print \\$1 }"`; do | ||
| 84 | echo "Testing $cipher" | ||
| 85 | $ssltest -cipher $cipher -seclevel 3 | ||
| 86 | if [ $? -eq 0 ] ; then | ||
| 87 | echo "Failed $cipher should not have succeeded" | ||
| 88 | exit 1 | ||
| 89 | fi | ||
| 90 | done | ||
| 91 | done | ||
| 80 | 92 | ||
| 81 | ############################################################################# | 93 | ############################################################################# |
| 82 | 94 | ||