ssl: Run all test case combinations

Fix test case code to use keyAgreement for ECDH_ECDSA
author: Ingela Anderton Andin <[email protected]> 2018-04-09 11:56:30 +0200
committer: Ingela Anderton Andin <[email protected]> 2018-04-30 07:30:34 +0200
commit: 6f4139977174602a558e98f09d96295122bc3d7f (patch)
tree: bc5fd296fc7bce41734af532ced2f84faf786949 /lib/ssl/test/ssl_test_lib.erl
parent: 15a6036c4de361b1651e01cb39768fecc27d87dd (diff)
download: otp-6f4139977174602a558e98f09d96295122bc3d7f.tar.gz
otp-6f4139977174602a558e98f09d96295122bc3d7f.tar.bz2
otp-6f4139977174602a558e98f09d96295122bc3d7f.zip
1 files changed, 49 insertions, 1 deletions
diff --git a/lib/ssl/test/ssl_test_lib.erl b/lib/ssl/test/ssl_test_lib.erl
index 3a7e844cf8..a45249b75e 100644
--- a/lib/ssl/test/ssl_test_lib.erl
+++ b/lib/ssl/test/ssl_test_lib.erl
@@ -1567,12 +1567,60 @@ openssl_dsa_support() ->
             true
     end.
 
+%% Acctual support is tested elsewhere, this is to exclude some LibreSSL and OpenSSL versions
+openssl_sane_dtls() -> 
+    case os:cmd("openssl version") of
+        "OpenSSL 0." ++ _ ->
+            false;
+        "OpenSSL 1.0.1s-freebsd" ++ _ ->
+            false;
+        "OpenSSL 1.0.2k-freebsd" ++ _ ->
+            false;
+        "OpenSSL 1.0.2d" ++ _ ->
+            false;
+        "OpenSSL 1.0.2n" ++ _ ->
+            false;
+        "OpenSSL 1.0.0" ++ _ ->
+            false;
+        "OpenSSL" ++ _ ->
+            true;
+        "LibreSSL 2.7" ++ _ ->
+            true;
+        _ ->
+            false
+        end.
+openssl_sane_client_cert() -> 
+    case os:cmd("openssl version") of
+        "LibreSSL 2.5.2" ++ _ ->
+            true;
+        "LibreSSL 2.4" ++ _ ->
+            false;
+        "LibreSSL 2.3" ++ _ ->
+            false; 
+         "LibreSSL 2.1" ++ _ ->
+            false; 
+         "LibreSSL 2.0" ++ _ ->
+            false; 
+         "LibreSSL 2.0" ++ _ ->
+            false; 
+        "OpenSSL 1.0.1s-freebsd" ->
+            false;
+        "OpenSSL 1.0.0" ++ _ ->
+            false; 
+        _ ->
+            true
+    end.
+
 check_sane_openssl_version(Version) ->
     case supports_ssl_tls_version(Version) of 
 	true ->
 	    case {Version, os:cmd("openssl version")} of
                 {'sslv3', "OpenSSL 1.0.2" ++ _} ->
                     false;
+                {'dtlsv1', _} ->
+		    not is_fips(openssl);
+		{'dtlsv1.2', _} ->
+		    not is_fips(openssl);
 		{_, "OpenSSL 1.0.2" ++ _} ->
 		    true;
 		{_, "OpenSSL 1.0.1" ++ _} ->
@@ -1581,7 +1629,7 @@ check_sane_openssl_version(Version) ->
 		    false;
 		{'tlsv1.1', "OpenSSL 1.0.0" ++ _} ->
 		    false;
-                {'dtlsv1.2', "OpenSSL 1.0.0" ++ _} ->
+                {'dtlsv1.2', "OpenSSL 1.0.2" ++ _} ->
 		    false;
 		{'dtlsv1',  "OpenSSL 1.0.0" ++ _} ->
 		    false;
author	Ingela Anderton Andin <[email protected]>	2018-04-09 11:56:30 +0200
committer	Ingela Anderton Andin <[email protected]>	2018-04-30 07:30:34 +0200
commit	6f4139977174602a558e98f09d96295122bc3d7f (patch)
tree	bc5fd296fc7bce41734af532ced2f84faf786949 /lib/ssl/test/ssl_test_lib.erl
parent	15a6036c4de361b1651e01cb39768fecc27d87dd (diff)
download	otp-6f4139977174602a558e98f09d96295122bc3d7f.tar.gz otp-6f4139977174602a558e98f09d96295122bc3d7f.tar.bz2 otp-6f4139977174602a558e98f09d96295122bc3d7f.zip