aboutsummaryrefslogtreecommitdiffstats
path: root/tests/tls-protocols
Commit message (Collapse)AuthorAgeFiles
* tests/*/t: Replace filetype=sh with filetype=bash.Guilhem Moulin2024-03-061
|
* Tests: TLS ciphers/protocols: Downgrade security level to 0.Guilhem Moulin2022-02-212
| | | | | | This is required to test TLS version <1.2 on systems with higher security levels, see SSL_CTX_set_security_level(3ssl). Addapted from a patch from <xnox> for Unbuntu.
* test suite: use stock OpenSSL config except for tests/tls-protocols.Guilhem Moulin2020-12-172
| | | | | It's best to use a stock (clean) environment when possible. We only need to test TLS protocol version <1.2 for tests/tls-protocols.
* typofixGuilhem Moulin2020-12-131
|
* test suite: ensure we haven't started speaking IMAP when the SSL/TLS ↵Guilhem Moulin2020-12-131
| | | | | | handshake is aborted. (Unless STARTTLS is used to upgrade the connection.)
* libinterimap: deprecate SSL_protocols and introduce SSL_protocol_{min,max}.Guilhem Moulin2020-12-111
| | | | | | | | Using the libssl interface simplifies our protocol black/whitelist greatly; this only allows simple min/max bounds, but holes are arguably not very useful here. Using the new settings bumps the required libssl version to 1.1.0.
* libinterimap: remove default SSL_protocols value.Guilhem Moulin2020-12-111
| | | | | | | | Namely, use the system default instead of "!SSLv2 !SSLv3 !TLSv1 !TLSv1.1". As of Debian Buster (OpenSSL 1.1.1) this does not make a difference, however using the system default provides better compatibility with future libssl versions.
* Test suite: add new tests for SSL/TLS.Guilhem Moulin2019-11-133
SSL connections are accepted on TCP port 10993. Also, fix STARTTLS directive, broken since fba1c36…