From: Bernd Edlinger <bernd.edlinger@hotmail.de>
Date: Mon, 13 Feb 2023 11:58:33 +0000 (+0100)
Subject: Fix failing cms test when no-des is used
X-Git-Tag: openssl-3.2.0-alpha1~1276
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=c400a1fe477b44a5eacbad2be8d50f2eaa92925c;p=thirdparty%2Fopenssl.git

Fix failing cms test when no-des is used

The test tries to use DES but that may not be available.
But for the purpose of regression testing CVE-2023-0215
the cipher is not relevant, so we use AES-128 instead.

Fixes #20249

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Todd Short <todd.short@me.com>
(Merged from https://github.com/openssl/openssl/pull/20276)
---

diff --git a/test/recipes/80-test_cms.t b/test/recipes/80-test_cms.t
index c4cd53b8f3b..25b0238f855 100644
--- a/test/recipes/80-test_cms.t
+++ b/test/recipes/80-test_cms.t
@@ -1135,7 +1135,7 @@ with({ exit_checker => sub { return shift == 6; } },
     sub {
         ok(run(app(['openssl', 'cms', '-encrypt',
                     '-in', srctop_file("test", "smcont.txt"),
-                    '-stream', '-recip',
+                    '-aes128', '-stream', '-recip',
                     srctop_file("test/smime-certs", "badrsa.pem"),
                    ])),
             "Check failure during BIO setup with -stream is handled correctly");