diff options
author | Guilhem Moulin <guilhem@debian.org> | 2020-12-26 23:33:12 +0100 |
---|---|---|
committer | Guilhem Moulin <guilhem@debian.org> | 2020-12-26 23:33:12 +0100 |
commit | f4a60089cd7fdff73504a1f1f0afde642e77b735 (patch) | |
tree | 4fbbd58649eedea0485901753406caf0beb36836 /tests/tls-rsa+ecdsa/t | |
parent | 2e485797d8ec91a0a74ec1f1e2e8723cf74a586e (diff) | |
parent | 9cbaed6527c3030819976dbe41bfb4392d6a6fa2 (diff) |
Merge tag 'v0.5.5' into debian/latest
Release version 0.5.5
Diffstat (limited to 'tests/tls-rsa+ecdsa/t')
-rw-r--r-- | tests/tls-rsa+ecdsa/t | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/tests/tls-rsa+ecdsa/t b/tests/tls-rsa+ecdsa/t index 2adf930..c9f5b96 100644 --- a/tests/tls-rsa+ecdsa/t +++ b/tests/tls-rsa+ecdsa/t @@ -36,9 +36,11 @@ grep -Fx -e "remote: Peer certificate matches pinned SPKI digest sha256\$$PKEY_S -e "remote: Peer certificate matches pinned SPKI digest sha256\$$PKEY_ALT_SHA256" \ <"$STDERR" || error -# force RSA (XXX do we really have to force TLSv1.2 here?) +# force RSA +# XXX we also have to force TLS <=1.2 here as the TLSv1.3 ciphersuites +# don't specify the certificate type (nor key exchange) cat >>"$XDG_CONFIG_HOME/interimap/config" <<-EOF - SSL_protocols = TLSv1.2 + SSL_protocol_max = TLSv1.2 SSL_cipherlist = EECDH+AESGCM+aRSA EOF interimap --debug || error |