diff options
| author |   jsing <jsing@openbsd.org> | 2014-12-12 12:23:35 +0000 |
|---|---|---|
| committer | jsing <jsing@openbsd.org> | 2014-12-12 12:23:35 +0000 |
| commit | bbac1b5994cbcac69bec6df33daf89c9637e71ec (patch) | |
| tree | f6c00f3ef5ef65ebf1f86712441c9c783aa0f1bb | |
| parent | Change the keyword "ssl" to "tls" to reflect reality since we (diff) | |
| download | wireguard-openbsd-bbac1b5994cbcac69bec6df33daf89c9637e71ec.tar.xz wireguard-openbsd-bbac1b5994cbcac69bec6df33daf89c9637e71ec.zip | |
Increase cipher suite test coverage by including all cipher suites that
use RSA authentication, rather than only those that use RSA key exchange.
| -rw-r--r-- | regress/lib/libssl/ssl/testssl | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/regress/lib/libssl/ssl/testssl b/regress/lib/libssl/ssl/testssl index 379ddfcc509..04f82a9da1d 100644 --- a/regress/lib/libssl/ssl/testssl +++ b/regress/lib/libssl/ssl/testssl @@ -77,7 +77,7 @@ $ssltest -bio_pair -server_auth -client_auth -app_verify $CA $extra || exit 1 echo "Testing ciphersuites" for protocol in SSLv3 TLSv1.2; do echo "Testing ciphersuites for $protocol" - for cipher in `$openssl ciphers "RSA+$protocol" | tr ':' ' '`; do + for cipher in `$openssl ciphers "$protocol+aRSA" | tr ':' ' '`; do echo "Testing $cipher" prot="" if [ $protocol = "SSLv3" ] ; then @@ -85,8 +85,8 @@ for protocol in SSLv3 TLSv1.2; do fi $ssltest -cipher $cipher $prot if [ $? -ne 0 ] ; then - echo "Failed $cipher" - exit 1 + echo "Failed $cipher" + exit 1 fi done done @@ -138,8 +138,8 @@ for protocol in SSLv3; do echo "Testing $cipher" $ssltest -cipher $cipher -dtls1 if [ $? -ne 0 ] ; then - echo "Failed $cipher" - exit 1 + echo "Failed $cipher" + exit 1 fi done done |