diff options
| author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2017-07-18 16:40:11 +0200 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2017-07-21 09:55:55 +0200 |
| commit | 94629c8fdaa44a362cf983c0d998c31ed8526bbc (patch) | |
| tree | b6c84a1190ec7c834e9753cab7181feeab5bfc0e /tests/suite/tls-fuzzer | |
| parent | c3f23216e789241431058617ada1c39e7d9f09b5 (diff) | |
| download | gnutls-94629c8fdaa44a362cf983c0d998c31ed8526bbc.tar.gz | |
tlsfuzzer: enabled SNI and other tests from master
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Diffstat (limited to 'tests/suite/tls-fuzzer')
| -rw-r--r-- | tests/suite/tls-fuzzer/gnutls-nocert.json | 23 | ||||
| m--------- | tests/suite/tls-fuzzer/tlsfuzzer | 0 | ||||
| m--------- | tests/suite/tls-fuzzer/tlslite-ng | 0 |
3 files changed, 20 insertions, 3 deletions
diff --git a/tests/suite/tls-fuzzer/gnutls-nocert.json b/tests/suite/tls-fuzzer/gnutls-nocert.json index 097ad15633..77044cff75 100644 --- a/tests/suite/tls-fuzzer/gnutls-nocert.json +++ b/tests/suite/tls-fuzzer/gnutls-nocert.json @@ -8,6 +8,22 @@ "tests" : [ {"name" : "test-ocsp-stapling.py", "arguments" : ["--no-status"] }, + {"name" : "test-encrypt-then-mac-renegotiation.py", + "comments" : "we are not strict in EtM required behavior in renegotiation", + "arguments" : ["-e", "Encrypt-then-MAC renegotiation crash"]}, + {"name" : "test-cve-2016-7054.py", + "arguments" : ["-e", "sanity"]}, + {"name" : "test-cve-2016-6309.py"}, + {"name" : "test-invalid-server-name-extension.py", + "comment" : "we don't parse past the first valid name, and we don't validate input received", + "arguments" : ["-e", "SNI name with UTF-8", + "-e", "multiple host_names in SNI, RFC 6066 compliance", + "-e", "incorrect SNI"]}, + {"name" : "test-invalid-server-name-extension-resumption.py", + "comment" : "we don't follow the RFC precisely on SNI resumption, we cache the SNI and ignore the extensions", + "arguments" : ["-e", "Sanity check, bad SNI", + "-e", "session resume with different SNI", + "-e", "session resume with malformed SNI"]}, {"name" : "test-chacha20.py"}, {"name" : "test-aes-gcm-nonces.py" }, {"name" : "test-atypical-padding.py" }, @@ -23,7 +39,9 @@ {"name" : "test-dhe-rsa-key-exchange-signatures.py"}, {"name" : "test-dhe-rsa-key-exchange-with-bad-messages.py"}, {"name" : "test-early-application-data.py"}, - {"name" : "test-ecdhe-rsa-key-exchange.py"}, + {"name" : "test-ecdhe-rsa-key-exchange.py", + "comment" : "current version doesn't negotiate ECDHE w/o extension", + "arguments" : ["-e", "ECDHE w/o extension"]}, {"name" : "test-ecdhe-rsa-key-exchange-with-bad-messages.py"}, {"name" : "test-empty-extensions.py"}, {"name" : "test-export-ciphers-rejected.py", @@ -33,8 +51,7 @@ {"name" : "test-extended-master-secret-extension.py", "comment" : "gnutls does not allow switching from EMS to no EMS, and w/ECDHE test is incomplete", "arguments" : ["-e", "renegotiate without EMS in session with EMS", - "-e", "EMS with session resume without extension", - "-e", "extended master secret w/ECDHE"]}, + "-e", "EMS with session resume without extension"]}, {"name" : "test-fallback-scsv.py"}, {"name" : "test-fuzzed-ciphertext.py"}, {"name" : "test-fuzzed-finished.py"}, diff --git a/tests/suite/tls-fuzzer/tlsfuzzer b/tests/suite/tls-fuzzer/tlsfuzzer -Subproject 744a2c8dc3b0c8ce36c4956d2713a3757b83213 +Subproject 7d6a6028d00dc65c2d8b9112e041ac57fc6b55c diff --git a/tests/suite/tls-fuzzer/tlslite-ng b/tests/suite/tls-fuzzer/tlslite-ng -Subproject 26a323a8beb51a8696f578769295db98121570b +Subproject e0f1a75aedcb6db3c9274984d9105e4fc38a7eb |