mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-12-03 05:41:46 +08:00
Code Issues Packages Projects Releases Wiki Activity
19,674 Commits 33 Branches 385 Tags 507 MiB
b997adb3a5
Commit Graph

7 Commits

Author SHA1 Message Date
Matt Caswell
4d118fe007 Fix test_ssl_new when compiled with no-tls1_2 or no-dtls1_2 
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2788)
 2017-02-28 16:26:13 +00:00
Dr. Stephen Henson
31b238ad05 Add and use function test_pem to work out test filenames. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2667)
 2017-02-17 16:33:12 +00:00
Matt Caswell
cc22cd546b Provide a test for the Encrypt-Then-Mac renegotiation crash 
In 1.1.0 changing the ciphersuite during a renegotiation can result in
a crash leading to a DoS attack. In master this does not occur with TLS
(instead you get an internal error, which is still wrong but not a security
issue) - but the problem still exists in the DTLS code.

This commit provides a test for the issue.

CVE-2017-3733

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2017-02-16 09:35:56 +00:00
Matt Caswell
dff70a2b73 Extend the test_ssl_new renegotiation tests to include client auth 
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1982)
 2017-01-23 14:04:44 +00:00
Matt Caswell
cd99883755 Add server side support for supported_versions extension 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-11-09 16:03:08 +00:00
Matt Caswell
fe7dd55341 Extend the renegotiation tests 
Add the ability to test both server initiated and client initiated reneg.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-09-28 09:15:07 +01:00
Matt Caswell
e42c4544c8 Add support for testing renegotiation 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-09-28 09:15:07 +01:00