mirror of
https://github.com/Mbed-TLS/mbedtls.git
synced 2025-07-30 22:43:08 +03:00
Adjust TLS protocol cases for 2.28
TLS 1.3 is still experimental and partial, and SSL3 is obsolete, so we don't expect much coverage about them, in particular we don't expect them to be the sole supported version. TLS 1.0 and 1.1 exist and we expect good coverage for them. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
This commit is contained in:
Gilles Peskine
@ -57,6 +57,7 @@ SIMPLE_DEPENDENCIES = {
|
|||||||
'MBEDTLS_PSA_CRYPTO_CLIENT': '!MBEDTLS_PSA_CRYPTO_C',
|
'MBEDTLS_PSA_CRYPTO_CLIENT': '!MBEDTLS_PSA_CRYPTO_C',
|
||||||
'MBEDTLS_PSA_INJECT_ENTROPY': 'MBEDTLS_PSA_CRYPTO_C',
|
'MBEDTLS_PSA_INJECT_ENTROPY': 'MBEDTLS_PSA_CRYPTO_C',
|
||||||
'MBEDTLS_PSA_ASSUME_EXCLUSIVE_BUFFERS': 'MBEDTLS_PSA_CRYPTO_C',
|
'MBEDTLS_PSA_ASSUME_EXCLUSIVE_BUFFERS': 'MBEDTLS_PSA_CRYPTO_C',
|
||||||
|
'MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL': 'MBEDTLS_SSL_CLI_C:MBEDTLS_SSL_SRV_C',
|
||||||
}
|
}
|
||||||
|
|
||||||
def dependencies_of_setting(cfg: config.Config,
|
def dependencies_of_setting(cfg: config.Config,
|
||||||
@ -92,7 +93,7 @@ def dependencies_of_setting(cfg: config.Config,
|
|||||||
# tests that only run Mbed TLS against itself, which only run in
|
# tests that only run Mbed TLS against itself, which only run in
|
||||||
# configurations with both sides enabled.
|
# configurations with both sides enabled.
|
||||||
if name.startswith('MBEDTLS_SSL_TLS1_3_'):
|
if name.startswith('MBEDTLS_SSL_TLS1_3_'):
|
||||||
return 'MBEDTLS_SSL_CLI_C:MBEDTLS_SSL_SRV_C:MBEDTLS_SSL_PROTO_TLS1_3'
|
return 'MBEDTLS_SSL_CLI_C:MBEDTLS_SSL_SRV_C:MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL'
|
||||||
if name.startswith('MBEDTLS_SSL_DTLS_'):
|
if name.startswith('MBEDTLS_SSL_DTLS_'):
|
||||||
return 'MBEDTLS_SSL_CLI_C:MBEDTLS_SSL_SRV_C:MBEDTLS_SSL_PROTO_DTLS'
|
return 'MBEDTLS_SSL_CLI_C:MBEDTLS_SSL_SRV_C:MBEDTLS_SSL_PROTO_DTLS'
|
||||||
if name.startswith('MBEDTLS_SSL_'):
|
if name.startswith('MBEDTLS_SSL_'):
|
||||||
|
|||||||
@ -1,9 +1,13 @@
|
|||||||
# Interesting combinations of TLS options
|
# Interesting combinations of TLS options
|
||||||
|
|
||||||
Config: TLS 1.2 without TLS 1.3
|
Config: TLS 1.0 only
|
||||||
depends_on:MBEDTLS_SSL_PROTO_TLS1_2:!MBEDTLS_SSL_PROTO_TLS1_3
|
depends_on:!MBEDTLS_SSL_PROTO_SSL3:MBEDTLS_SSL_PROTO_TLS1:!MBEDTLS_SSL_PROTO_TLS1_1:!MBEDTLS_SSL_PROTO_TLS1_2:!MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
|
||||||
pass:
|
pass:
|
||||||
|
|
||||||
Config: TLS 1.3 without TLS 1.2
|
Config: TLS 1.1 only
|
||||||
depends_on:MBEDTLS_SSL_PROTO_TLS1_3:!MBEDTLS_SSL_PROTO_TLS1_2
|
depends_on:!MBEDTLS_SSL_PROTO_SSL3:!MBEDTLS_SSL_PROTO_TLS1:MBEDTLS_SSL_PROTO_TLS1_1:!MBEDTLS_SSL_PROTO_TLS1_2:!MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
|
||||||
|
pass:
|
||||||
|
|
||||||
|
Config: TLS 1.2 only
|
||||||
|
depends_on:!MBEDTLS_SSL_PROTO_SSL3:!MBEDTLS_SSL_PROTO_TLS1:!MBEDTLS_SSL_PROTO_TLS1_1:MBEDTLS_SSL_PROTO_TLS1_2:!MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
|
||||||
pass:
|
pass:
|
||||||
|
|||||||
Reference in New Issue
Block a user