Browse Source

Suppress some BoringSSL test failures

The external BoringSSL tests had some failures as a result of
the extensions refactor. This was due to a deliberate relaxation
of the duplicate extensions checking code. We now only check
known extensions for duplicates. Unknown extensions are ignored.
This is allowed behaviour, so we suppress those BoringSSL tests.

Perl changes reviewed by Richard Levitte. Non-perl changes reviewed by Rich
Salz

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
master
Matt Caswell 6 years ago
parent
commit
14d21b690a
1 changed files with 6 additions and 0 deletions
  1. +6
    -0
      test/ossl_shim/ossl_config.json

+ 6
- 0
test/ossl_shim/ossl_config.json View File

@ -2,6 +2,12 @@
{
"DisabledTests" : {
"*TLS13*":"No TLS1.3 support yet",
"DuplicateExtensionClient-TLS1":"OpenSSL, by design, only checks for duplicates of known extensions and ignores others",
"DuplicateExtensionServer-TLS1":"OpenSSL, by design, only checks for duplicates of known extensions and ignores others",
"DuplicateExtensionClient-TLS11":"OpenSSL, by design, only checks for duplicates of known extensions and ignores others",
"DuplicateExtensionServer-TLS11":"OpenSSL, by design, only checks for duplicates of known extensions and ignores others",
"DuplicateExtensionServer-TLS12":"OpenSSL, by design, only checks for duplicates of known extensions and ignores others",
"DuplicateExtensionClient-TLS12":"OpenSSL, by design, only checks for duplicates of known extensions and ignores others",
"UnauthenticatedECDH":"Test failure - reason unknown",
"SkipServerKeyExchange":"Test failure - reason unknown",
"FragmentAlert-DTLS":"Test failure - reason unknown",


Loading…
Cancel
Save