tests/suite/tls-fuzzer: exclude test‑tls13‑finished.py padding tests...

author Alexander Sosedkin <asosedkin@redhat.com>

Thu, 22 Jan 2026 16:28:58 +0000 (17:28 +0100)

committer Alexander Sosedkin <asosedkin@redhat.com>

Thu, 22 Jan 2026 17:05:09 +0000 (18:05 +0100)
author Alexander Sosedkin <asosedkin@redhat.com>
Thu, 22 Jan 2026 16:28:58 +0000 (17:28 +0100)
committer Alexander Sosedkin <asosedkin@redhat.com>
Thu, 22 Jan 2026 17:05:09 +0000 (18:05 +0100)
diff --git a/tests/suite/tls-fuzzer/gnutls-nocert-tls13.json b/tests/suite/tls-fuzzer/gnutls-nocert-tls13.json

index 9f10cfa39df6f3f136ea08713df9e356db050052..c010118d783278b1fb222739b667d9d3e6a856f7 100644 (file)
--- a/tests/suite/tls-fuzzer/gnutls-nocert-tls13.json
+++ b/tests/suite/tls-fuzzer/gnutls-nocert-tls13.json
@@ -80,10 +80,52 @@
           "arguments": ["-p", "@PORT@",
                         "-t", "180"]},
          {"name" : "test-tls13-finished.py",
-         "comment" : "the disabled tests timeout very often due tls-fuzzer being slow without m2crypto",
+         "comment" : "ALL padding tests are racing against GnuTLS early NST optimization (RFC8446.4.6.1-legal); extreme padding ones also timeout time-to-time due to tlsfuzzer being slow without m2crypto",
           "arguments": ["-p", "@PORT@",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 1",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 2",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 4",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 8",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 16",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 32",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 48",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 16348",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 131072",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 196608",
                         "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 0, pad_right 16777183",
-                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 16777167"]},
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 1, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 2, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 4, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 8, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 16, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 32, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 48, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 16348, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 12, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 1, pad_right 1",
+                       "-e", "padding - cipher TLS_AES_128_GCM_SHA256, pad_byte 0, pad_left 8, pad_right 8",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 1",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 2",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 4",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 8",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 16",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 32",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 48",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 16332",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 131072",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 196608",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 16777167",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 0, pad_right 12",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 1, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 2, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 4, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 8, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 16, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 32, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 48, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 16332, pad_right 0",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 1, pad_right 1",
+                       "-e", "padding - cipher TLS_AES_256_GCM_SHA384, pad_byte 0, pad_left 8, pad_right 8"]},
          {"name" : "test-tls13-hrr.py",
           "arguments": ["-p", "@PORT@"]},
          {"name" : "test-tls13-invalid-ciphers.py",
author	Alexander Sosedkin <asosedkin@redhat.com>
	Thu, 22 Jan 2026 16:28:58 +0000 (17:28 +0100)
committer	Alexander Sosedkin <asosedkin@redhat.com>
	Thu, 22 Jan 2026 17:05:09 +0000 (18:05 +0100)