From 54c3b236a4ef42c9b8d866a1cf805d478c2e2753 Mon Sep 17 00:00:00 2001 From: Patrick McDermott Date: Mon, 29 Jul 2019 23:46:37 -0400 Subject: tests/badssl.sh: Update results HPKP is unimplemented, certificates without CN/subject are accepted, wolfSSL falls over with too many SANs, and 8192-bit RSA keys are unsupported by wolfSSL (which is probably a good thing anyway). --- diff --git a/tests/badssl.sh b/tests/badssl.sh index f1c72df..7ae2891 100755 --- a/tests/badssl.sh +++ b/tests/badssl.sh @@ -38,7 +38,7 @@ do_test() EOF } -plan_ 41 +plan_ 40 # Certificate @@ -47,10 +47,9 @@ do_test 'not' 'wrong.host' 443 do_test 'not' 'self-signed' 443 do_test 'not' 'untrusted-root' 443 do_test 'not' 'revoked' 443 -do_test 'not' 'pinning-test' 443 -do_test 'not' 'no-common-name' 443 # TODO: Should this pass? -do_test 'not' 'no-subject' 443 # TODO: Should this pass? +do_test ' ' 'no-common-name' 443 +do_test ' ' 'no-subject' 443 do_test 'not' 'incomplete-chain' 443 do_test 'not' 'sha1-intermediate' 443 @@ -58,15 +57,15 @@ do_test ' ' 'sha256' 443 do_test ' ' 'sha384' 443 do_test ' ' 'sha512' 443 -do_test ' ' '1000-sans' 443 -do_test ' ' '10000-sans' 443 +do_test 'not' '1000-sans' 443 +do_test 'not' '10000-sans' 443 do_test ' ' 'ecc256' 443 do_test ' ' 'ecc384' 443 do_test ' ' 'rsa2048' 443 do_test ' ' 'rsa4096' 443 -do_test ' ' 'rsa8192' 443 +do_test 'not' 'rsa8192' 443 do_test ' ' 'extended-validation' 443 -- cgit v0.9.1