diff options
Diffstat (limited to 'src/testcurl/https/tls_daemon_options_test.c')
-rw-r--r-- | src/testcurl/https/tls_daemon_options_test.c | 20 |
1 files changed, 16 insertions, 4 deletions
diff --git a/src/testcurl/https/tls_daemon_options_test.c b/src/testcurl/https/tls_daemon_options_test.c index e14877b3..d7b29b08 100644 --- a/src/testcurl/https/tls_daemon_options_test.c +++ b/src/testcurl/https/tls_daemon_options_test.c | |||
@@ -119,7 +119,6 @@ main (int argc, char *const *argv) | |||
119 | {{MHD_GNUTLS_CIPHER_AES_256_CBC, 0}, "AES256-SHA"}, | 119 | {{MHD_GNUTLS_CIPHER_AES_256_CBC, 0}, "AES256-SHA"}, |
120 | {{0, 0}, NULL} | 120 | {{0, 0}, NULL} |
121 | }; | 121 | }; |
122 | |||
123 | fprintf (stderr, "SHA/TLS tests:\n"); | 122 | fprintf (stderr, "SHA/TLS tests:\n"); |
124 | cpos = 0; | 123 | cpos = 0; |
125 | while (ciphers[cpos].curlname != NULL) | 124 | while (ciphers[cpos].curlname != NULL) |
@@ -154,14 +153,27 @@ main (int argc, char *const *argv) | |||
154 | MHD_OPTION_END); | 153 | MHD_OPTION_END); |
155 | cpos++; | 154 | cpos++; |
156 | } | 155 | } |
157 | 156 | #if 0 | |
157 | /* manual inspection of the handshake suggests that CURL will | ||
158 | request TLSv1, we send back "SSL3" and CURL takes it *despite* | ||
159 | being configured to speak SSL3-only. Notably, the other way | ||
160 | round (have curl request SSL3, respond with TLSv1 only) | ||
161 | is properly refused by CURL. Either way, this does NOT seem | ||
162 | to be a bug in MHD/gnuTLS but rather in CURL; hence this | ||
163 | test is commented out here... */ | ||
158 | errorCount += | 164 | errorCount += |
159 | test_wrap ("unmatching SSL version", &test_unmatching_ssl_version, | 165 | test_wrap ("unmatching version: SSL3 vs. TLS", &test_unmatching_ssl_version, |
160 | test_fd, daemon_flags, "AES256-SHA", CURL_SSLVERSION_TLSv1, | 166 | test_fd, daemon_flags, "AES256-SHA", CURL_SSLVERSION_TLSv1, |
161 | MHD_OPTION_HTTPS_MEM_KEY, srv_key_pem, | 167 | MHD_OPTION_HTTPS_MEM_KEY, srv_key_pem, |
162 | MHD_OPTION_HTTPS_MEM_CERT, srv_self_signed_cert_pem, | 168 | MHD_OPTION_HTTPS_MEM_CERT, srv_self_signed_cert_pem, |
163 | MHD_OPTION_PROTOCOL_VERSION, p_ssl3, MHD_OPTION_END); | 169 | MHD_OPTION_PROTOCOL_VERSION, p_ssl3, MHD_OPTION_END); |
164 | 170 | #endif | |
171 | errorCount += | ||
172 | test_wrap ("unmatching version: TLS vs. SSL3", &test_unmatching_ssl_version, | ||
173 | test_fd, daemon_flags, "AES256-SHA", CURL_SSLVERSION_SSLv3, | ||
174 | MHD_OPTION_HTTPS_MEM_KEY, srv_key_pem, | ||
175 | MHD_OPTION_HTTPS_MEM_CERT, srv_self_signed_cert_pem, | ||
176 | MHD_OPTION_PROTOCOL_VERSION, p_tls, MHD_OPTION_END); | ||
165 | curl_global_cleanup (); | 177 | curl_global_cleanup (); |
166 | fclose (test_fd); | 178 | fclose (test_fd); |
167 | remove (TEST_FILE_NAME); | 179 | remove (TEST_FILE_NAME); |