From ee9d410326b65a0c11c5559c213ea2f5404d5667 Mon Sep 17 00:00:00 2001 From: Jacob Barthelmeh Date: Thu, 7 Sep 2017 16:58:37 -0600 Subject: [PATCH 1/2] anon flag with interop script --- scripts/openssl.test | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/scripts/openssl.test b/scripts/openssl.test index 089e43160..348ad9f27 100755 --- a/scripts/openssl.test +++ b/scripts/openssl.test @@ -262,20 +262,23 @@ do # check for psk suite and turn on client psk if so psk="" + adh="" port=$openssl_port case $wolfSuite in *ECDH-RSA*) port=$ecdh_port ;; *PSK*) psk="-s " ;; + *ADH*) + adh="-a " ;; esac if [ $version -lt 4 ] then - ./examples/client/client -p $port -g -r -l $wolfSuite -v $version $psk + ./examples/client/client -p $port -g -r -l $wolfSuite -v $version $psk $adh else # do all versions - ./examples/client/client -p $port -g -r -l $wolfSuite $psk + ./examples/client/client -p $port -g -r -l $wolfSuite $psk $adh fi client_result=$? From 1d1fc6637481e20cf9019c7638ba38e8116ada23 Mon Sep 17 00:00:00 2001 From: Jacob Barthelmeh Date: Fri, 8 Sep 2017 10:50:23 -0600 Subject: [PATCH 2/2] double check support of SSLv3 with interop testing --- scripts/openssl.test | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/scripts/openssl.test b/scripts/openssl.test index 348ad9f27..7969169c1 100755 --- a/scripts/openssl.test +++ b/scripts/openssl.test @@ -194,7 +194,12 @@ do # get openssl ciphers depending on version case $version in "0") openssl_ciphers=`openssl ciphers "SSLv3"` + + # double check that can actually do a sslv3 connection using + # client-cert.pem to send but any file with EOF works + openssl s_client -ssl3 -no_ign_eof -host localhost -port $openssl_port < ./certs/client-cert.pem sslv3_sup=$? + if [ $sslv3_sup != 0 ] then echo -e "Not testing SSLv3. No OpenSSL support for 'SSLv3' modifier"