Tree - source-git/openssl - CentOS Git server

source-git / openssl

Blame SPECS/openssl-1.1.1-no-brainpool.patch

Blob History Raw

Packit	c4476c	`diff -up openssl-1.1.1d/test/ssl-tests/20-cert-select.conf.in.no-brainpool openssl-1.1.1d/test/ssl-tests/20-cert-select.conf.in`
Packit	c4476c	`--- openssl-1.1.1d/test/ssl-tests/20-cert-select.conf.in.no-brainpool 2019-09-10 15:13:07.000000000 +0200`
Packit	c4476c	`+++ openssl-1.1.1d/test/ssl-tests/20-cert-select.conf.in 2019-09-13 15:11:07.358687169 +0200`
Packit	c4476c	`@@ -147,22 +147,22 @@ our @tests = (`
Packit	c4476c	`{`
Packit	c4476c	`name => "ECDSA with brainpool",`
Packit	c4476c	`server => {`
Packit	c4476c	`- "Certificate" => test_pem("server-ecdsa-brainpoolP256r1-cert.pem"),`
Packit	c4476c	`- "PrivateKey" => test_pem("server-ecdsa-brainpoolP256r1-key.pem"),`
Packit	c4476c	`- "Groups" => "brainpoolP256r1",`
Packit	c4476c	`+ "Certificate" => test_pem("server-ecdsa-cert.pem"),`
Packit	c4476c	`+ "PrivateKey" => test_pem("server-ecdsa-key.pem"),`
Packit	c4476c	`+# "Groups" => "brainpoolP256r1",`
Packit	c4476c	`},`
Packit	c4476c	`client => {`
Packit	c4476c	`#We don't restrict this to TLSv1.2, although use of brainpool`
Packit	c4476c	`#should force this anyway so that this should succeed`
Packit	c4476c	`"CipherString" => "aECDSA",`
Packit	c4476c	`"RequestCAFile" => test_pem("root-cert.pem"),`
Packit	c4476c	`- "Groups" => "brainpoolP256r1",`
Packit	c4476c	`+# "Groups" => "brainpoolP256r1",`
Packit	c4476c	`},`
Packit	c4476c	`test => {`
Packit	c4476c	`- "ExpectedServerCertType" =>, "brainpoolP256r1",`
Packit	c4476c	`- "ExpectedServerSignType" =>, "EC",`
Packit	c4476c	`+# "ExpectedServerCertType" =>, "brainpoolP256r1",`
Packit	c4476c	`+# "ExpectedServerSignType" =>, "EC",`
Packit	c4476c	`# Note: certificate_authorities not sent for TLS < 1.3`
Packit	c4476c	`- "ExpectedServerCANames" =>, "empty",`
Packit	c4476c	`+# "ExpectedServerCANames" =>, "empty",`
Packit	c4476c	`"ExpectedResult" => "Success"`
Packit	c4476c	`},`
Packit	c4476c	`},`
Packit	c4476c	`@@ -853,18 +853,18 @@ my @tests_tls_1_3 = (`
Packit	c4476c	`{`
Packit	c4476c	`name => "TLS 1.3 ECDSA with brainpool",`
Packit	c4476c	`server => {`
Packit	c4476c	`- "Certificate" => test_pem("server-ecdsa-brainpoolP256r1-cert.pem"),`
Packit	c4476c	`- "PrivateKey" => test_pem("server-ecdsa-brainpoolP256r1-key.pem"),`
Packit	c4476c	`- "Groups" => "brainpoolP256r1",`
Packit	c4476c	`+ "Certificate" => test_pem("server-ecdsa-cert.pem"),`
Packit	c4476c	`+ "PrivateKey" => test_pem("server-ecdsa-key.pem"),`
Packit	c4476c	`+# "Groups" => "brainpoolP256r1",`
Packit	c4476c	`},`
Packit	c4476c	`client => {`
Packit	c4476c	`"RequestCAFile" => test_pem("root-cert.pem"),`
Packit	c4476c	`- "Groups" => "brainpoolP256r1",`
Packit	c4476c	`+# "Groups" => "brainpoolP256r1",`
Packit	c4476c	`"MinProtocol" => "TLSv1.3",`
Packit	c4476c	`"MaxProtocol" => "TLSv1.3"`
Packit	c4476c	`},`
Packit	c4476c	`test => {`
Packit	c4476c	`- "ExpectedResult" => "ServerFail"`
Packit	c4476c	`+ "ExpectedResult" => "Success"`
Packit	c4476c	`},`
Packit	c4476c	`},`
Packit	c4476c	`);`
Packit	c4476c	`diff -up openssl-1.1.1d/test/ssl-tests/20-cert-select.conf.no-brainpool openssl-1.1.1d/test/ssl-tests/20-cert-select.conf`
Packit	c4476c	`--- openssl-1.1.1d/test/ssl-tests/20-cert-select.conf.no-brainpool 2019-09-10 15:13:07.000000000 +0200`
Packit	c4476c	`+++ openssl-1.1.1d/test/ssl-tests/20-cert-select.conf 2019-09-13 15:12:27.380288469 +0200`
Packit	c4476c	`@@ -238,23 +238,18 @@ server = 5-ECDSA with brainpool-server`
Packit	c4476c	`client = 5-ECDSA with brainpool-client`
Packit	c4476c
Packit	c4476c	`[5-ECDSA with brainpool-server]`
Packit	c4476c	`-Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-brainpoolP256r1-cert.pem`
Packit	c4476c	`+Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem`
Packit	c4476c	`CipherString = DEFAULT`
Packit	c4476c	`-Groups = brainpoolP256r1`
Packit	c4476c	`-PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-brainpoolP256r1-key.pem`
Packit	c4476c	`+PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem`
Packit	c4476c
Packit	c4476c	`[5-ECDSA with brainpool-client]`
Packit	c4476c	`CipherString = aECDSA`
Packit	c4476c	`-Groups = brainpoolP256r1`
Packit	c4476c	`RequestCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem`
Packit	c4476c	`VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem`
Packit	c4476c	`VerifyMode = Peer`
Packit	c4476c
Packit	c4476c	`[test-5]`
Packit	c4476c	`ExpectedResult = Success`
Packit	c4476c	`-ExpectedServerCANames = empty`
Packit	c4476c	`-ExpectedServerCertType = brainpoolP256r1`
Packit	c4476c	`-ExpectedServerSignType = EC`
Packit	c4476c
Packit	c4476c
Packit	c4476c	`# ===========================================================`
Packit	c4476c	`@@ -1713,14 +1708,12 @@ server = 52-TLS 1.3 ECDSA with brainpool`
Packit	c4476c	`client = 52-TLS 1.3 ECDSA with brainpool-client`
Packit	c4476c
Packit	c4476c	`[52-TLS 1.3 ECDSA with brainpool-server]`
Packit	c4476c	`-Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-brainpoolP256r1-cert.pem`
Packit	c4476c	`+Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem`
Packit	c4476c	`CipherString = DEFAULT`
Packit	c4476c	`-Groups = brainpoolP256r1`
Packit	c4476c	`-PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-brainpoolP256r1-key.pem`
Packit	c4476c	`+PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem`
Packit	c4476c
Packit	c4476c	`[52-TLS 1.3 ECDSA with brainpool-client]`
Packit	c4476c	`CipherString = DEFAULT`
Packit	c4476c	`-Groups = brainpoolP256r1`
Packit	c4476c	`MaxProtocol = TLSv1.3`
Packit	c4476c	`MinProtocol = TLSv1.3`
Packit	c4476c	`RequestCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem`
Packit	c4476c	`@@ -1728,7 +1721,7 @@ VerifyCAFile = ${ENV::TEST_CERTS_DIR}/ro`
Packit	c4476c	`VerifyMode = Peer`
Packit	c4476c
Packit	c4476c	`[test-52]`
Packit	c4476c	`-ExpectedResult = ServerFail`
Packit	c4476c	`+ExpectedResult = Success`
Packit	c4476c
Packit	c4476c
Packit	c4476c	`# ===========================================================`

source-git / openssl

Source Code

Blame SPECS/openssl-1.1.1-no-brainpool.patch