]> git.ipfire.org Git - thirdparty/gnutls.git/commitdiff
projects / thirdparty / gnutls.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 69ffa3a)
tls12-server-kx-neg: add tests without GOST signature algorithms
authorDmitry Eremin-Solenikov <dbaryshkov@gmail.com>
Fri, 8 Nov 2019 23:29:19 +0000 (02:29 +0300)
committerDmitry Eremin-Solenikov <dbaryshkov@gmail.com>
Fri, 27 Dec 2019 22:06:57 +0000 (01:06 +0300)
Add tests mimicking SChannel clients which are unable to send proper
SignatureAlgorithms extension.

Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
tests/tls12-server-kx-neg.c patch | blob | blame | history

diff --git a/tests/tls12-server-kx-neg.c b/tests/tls12-server-kx-neg.c
index 88d2666ef28268ed77dcdc3f9f0953b5a0d2830e..2d36c2888297b997dda48bef351a38a1390ca87c 100644 (file)
--- a/tests/tls12-server-kx-neg.c
+++ b/tests/tls12-server-kx-neg.c
@@ -526,6 +526,26 @@ test_case_st tests[] = {
                .server_prio = "NORMAL:-KX-ALL:+VKO-GOST-12:+GROUP-GOST-ALL:+GOST28147-TC26Z-CNT:+GOST28147-TC26Z-IMIT:+SIGN-GOSTR341012-512:+SIGN-GOSTR341012-256:+SIGN-GOSTR341001:-VERS-ALL:+VERS-TLS1.2",
                .client_prio = "NORMAL:-KX-ALL:+VKO-GOST-12:+GROUP-GOST-ALL:+GOST28147-TC26Z-CNT:+GOST28147-TC26Z-IMIT:+SIGN-GOSTR341012-512:+SIGN-GOSTR341012-256:+SIGN-GOSTR341001:-VERS-ALL:+VERS-TLS1.2"
        },
+       {
+               .name = "TLS 1.2 VKO-GOST-12 with cred and GOST12-256 cert client lacking signature algs (like SChannel)",
+               .server_ret = 0,
+               .client_ret = 0,
+               .have_cert_cred = 1,
+               .have_gost12_256_cert = 1,
+               .not_on_fips = 1,
+               .server_prio = "NORMAL:-KX-ALL:+VKO-GOST-12:+GROUP-GOST-ALL:+GOST28147-TC26Z-CNT:+GOST28147-TC26Z-IMIT:+SIGN-GOSTR341012-512:+SIGN-GOSTR341012-256:+SIGN-GOSTR341001:-VERS-ALL:+VERS-TLS1.2",
+               .client_prio = "NONE:+VKO-GOST-12:+GROUP-GOST-ALL:+GOST28147-TC26Z-CNT:+GOST28147-TC26Z-IMIT:+VERS-TLS1.2:+SIGN-RSA-SHA256"
+       },
+       {
+               .name = "TLS 1.2 VKO-GOST-12 with cred and GOST12-512 cert client lacking signature algs (like SChannel)",
+               .server_ret = 0,
+               .client_ret = 0,
+               .have_cert_cred = 1,
+               .have_gost12_512_cert = 1,
+               .not_on_fips = 1,
+               .server_prio = "NORMAL:-KX-ALL:+VKO-GOST-12:+GROUP-GOST-ALL:+GOST28147-TC26Z-CNT:+GOST28147-TC26Z-IMIT:+SIGN-GOSTR341012-512:+SIGN-GOSTR341012-256:+SIGN-GOSTR341001:-VERS-ALL:+VERS-TLS1.2",
+               .client_prio = "NONE:+VKO-GOST-12:+GROUP-GOST-ALL:+GOST28147-TC26Z-CNT:+GOST28147-TC26Z-IMIT:+VERS-TLS1.2:+SIGN-RSA-SHA256"
+       },
 #endif
 };
 
Mirror of https://gitlab.com/gnutls/gnutls.git