From f3bdecf3f6eee3ba2094146dd246d38fe22a6a10 Mon Sep 17 00:00:00 2001 From: Juliusz Sosinowicz Date: Thu, 14 May 2026 14:05:42 +0200 Subject: [PATCH] tests: skip RENEGOTIATION-INFO SCSV in record_size cipher loop TLS_EMPTY_RENEGOTIATION_INFO_SCSV appears in GetCipherNames() when HAVE_RENEGOTIATION_INDICATION is set. It is a signaling value, not a real suite; set_cipher_list accepts it but the handshake rejects it with UNSUPPORTED_SUITE. Add it to record_size_skip_cipher's deny list. --- tests/api/test_tls.c | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/tests/api/test_tls.c b/tests/api/test_tls.c index 6b24e4704d..d63498937b 100644 --- a/tests/api/test_tls.c +++ b/tests/api/test_tls.c @@ -1226,9 +1226,11 @@ int test_wolfSSL_alert_desc_string(void) static int record_size_skip_cipher(const char *name) { /* "ECDH-" matches static-ECDH ciphers ("ECDH-RSA-*", "ECDH-ECDSA-*") - * and not ECDHE-* because of the trailing '-'. */ + * and not ECDHE-* because of the trailing '-'. RENEGOTIATION-INFO is the + * TLS_EMPTY_RENEGOTIATION_INFO_SCSV signaling value, not a real cipher. */ static const char* const deny[] = { - "PSK", "SRP", "ANON", "NULL", "ECDSA", "ECDH-", "SM" + "PSK", "SRP", "ANON", "NULL", "ECDSA", "ECDH-", "SM", + "RENEGOTIATION-INFO" }; size_t i; for (i = 0; i < XELEM_CNT(deny); i++) {