diff options
| author | Theo Buehler <tb@cvs.openbsd.org> | 2020-08-08 10:06:50 +0000 |
|---|---|---|
| committer | Theo Buehler <tb@cvs.openbsd.org> | 2020-08-08 10:06:50 +0000 |
| commit | cbbb6296b1c34afea1245dfbdd998458d1ca3b47 (patch) | |
| tree | a620ecfe3a98a5c3474b6dd998a13e33ac997b46 /regress/lib/libssl | |
| parent | e465eb9bcda8b654d26e1e5b37f25dc854ed8f01 (diff) | |
Enable P-521 and run the tests that use it.
Diffstat (limited to 'regress/lib/libssl')
| -rw-r--r-- | regress/lib/libssl/tlsfuzzer/tlsfuzzer.py | 8 |
1 files changed, 3 insertions, 5 deletions
diff --git a/regress/lib/libssl/tlsfuzzer/tlsfuzzer.py b/regress/lib/libssl/tlsfuzzer/tlsfuzzer.py index 1406b6039f0..74f4ed937e3 100644 --- a/regress/lib/libssl/tlsfuzzer/tlsfuzzer.py +++ b/regress/lib/libssl/tlsfuzzer/tlsfuzzer.py @@ -1,4 +1,4 @@ -# $OpenBSD: tlsfuzzer.py,v 1.11 2020/06/24 07:29:21 tb Exp $ +# $OpenBSD: tlsfuzzer.py,v 1.12 2020/08/08 10:06:49 tb Exp $ # # Copyright (c) 2020 Theo Buehler <tb@openbsd.org> # @@ -65,7 +65,6 @@ class TestGroup: tls13_unsupported_ciphers = [ "-e", "TLS 1.3 with ffdhe2048", "-e", "TLS 1.3 with ffdhe3072", - "-e", "TLS 1.3 with secp521r1", # XXX: why is this curve problematic? "-e", "TLS 1.3 with x448", ] @@ -205,11 +204,8 @@ tls12_exclude_legacy_protocols = [ "-e", "Protocol (3, 1) in SSLv2 compatible ClientHello", "-e", "Protocol (3, 2) in SSLv2 compatible ClientHello", "-e", "Protocol (3, 3) in SSLv2 compatible ClientHello", - "-e", "Protocol (3, 1) with secp521r1 group", # XXX "-e", "Protocol (3, 1) with x448 group", - "-e", "Protocol (3, 2) with secp521r1 group", # XXX "-e", "Protocol (3, 2) with x448 group", - "-e", "Protocol (3, 3) with secp521r1 group", # XXX "-e", "Protocol (3, 3) with x448 group", ] @@ -575,6 +571,8 @@ class TlsServer: "s_server", "-accept", str(port), + "-groups", + "X25519:P-256:P-521:P-384", "-key", "localhost.key", "-cert", |