mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-04-17 20:42:44 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Fix skipped tests in configurations without RSA

Browse Source 
Tighten the matching when detecting which certificates are in use to
determine algorithm requirements. This fixes a bug whereby all tests were
skipped in configurations without RSA except for an Mbed TLS client against
a GnuTLS or OpenSSL server, due to *server2* matching ssl_server2.
Fixes #8366.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
This commit is contained in:
Gilles Peskine 2024-04-26 21:28:49 +02:00
parent f1415b65d0
commit 1bc28fe34b
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
tests/ssl-opt.sh
View File

@ -443,9 +443,9 @@ detect_required_features() {
esac esac
case "$CMD_LINE" in case "$CMD_LINE" in
*server5*|\ */server5*|\
*server7*|\ */server7*|\
*dir-maxpath*) */dir-maxpath*)
if [ "$TLS_VERSION" = "TLS13" ]; then if [ "$TLS_VERSION" = "TLS13" ]; then
# In case of TLS13 the support for ECDSA is enough # In case of TLS13 the support for ECDSA is enough
requires_pk_alg "ECDSA" requires_pk_alg "ECDSA"
@ -477,8 +477,8 @@ detect_required_features() {
esac esac
case "$CMD_LINE" in case "$CMD_LINE" in
*server2*|\ */server2*|\
*server7*) */server7*)
# server2 and server7 certificates use RSA encryption # server2 and server7 certificates use RSA encryption
requires_config_enabled "MBEDTLS_RSA_C" requires_config_enabled "MBEDTLS_RSA_C"
esac esac