From: Pauli <pauli@openssl.org>
Date: Thu, 22 Apr 2021 06:13:10 +0000 (+1000)
Subject: Runchecker: fix TLS curves test failure with no-tls1_3 option
X-Git-Tag: openssl-3.0.0-alpha16~146
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=94dc4282c3b85864596e9f333017fdb46de352ff;p=thirdparty%2Fopenssl.git

Runchecker: fix TLS curves test failure with no-tls1_3 option

The TLS curves test strong assumes that TLS 1.2 and TLS 1.3 are present.
It is only conditioned out if TLS 1.2 isn't.  This changes also conditions
it out if TLS 1.3 isn't present.

Fixes ##14965

Reviewed-by: Ben Kaduk <kaduk@mit.edu>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/14978)
---

diff --git a/test/recipes/80-test_ssl_new.t b/test/recipes/80-test_ssl_new.t
index 4dc25295938..a1828094db3 100644
--- a/test/recipes/80-test_ssl_new.t
+++ b/test/recipes/80-test_ssl_new.t
@@ -98,7 +98,8 @@ my %skip = (
   # special-casing for.
   # TODO(TLS 1.3): We should review this once we have TLS 1.3.
   "13-fragmentation.cnf" => disabled("tls1_2"),
-  "14-curves.cnf" => disabled("tls1_2") || $no_ec || $no_ec2m,
+  "14-curves.cnf" => disabled("tls1_2") || disabled("tls1_3")
+                     || $no_ec || $no_ec2m,
   "15-certstatus.cnf" => $no_tls || $no_ocsp,
   "16-dtls-certstatus.cnf" => $no_dtls || $no_ocsp,
   "17-renegotiate.cnf" => $no_tls_below1_3,