projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c6d67f0) | patch
Test mac-then-encrypt
authorEmilia Kasper <emilia@openssl.org>
Fri, 25 Nov 2016 16:05:30 +0000 (17:05 +0100)
committerEmilia Kasper <emilia@openssl.org>
Mon, 28 Nov 2016 11:23:36 +0000 (12:23 +0100)
commitb3618f44a7b8504bfb0a64e8a33e6b8e56d4d516
tree973e55ed7f1d45984268280f46f3da3e65caf5d1tree | snapshot
parentc6d67f09f34d8203c5bad7171ed45ec8771c9764commit | diff
Test mac-then-encrypt

Verify that the encrypt-then-mac negotiation is handled
correctly. Additionally, when compiled with no-asm, this test ensures
coverage for the constant-time MAC copying code in
ssl3_cbc_copy_mac. The proxy-based CBC padding test covers that as
well but it's nevertheless better to have an explicit handshake test
for mac-then-encrypt.

Reviewed-by: Andy Polyakov <appro@openssl.org>
CHANGES diff | blob | history
doc/man3/SSL_CONF_cmd.pod diff | blob | history
ssl/ssl_conf.c diff | blob | history
test/recipes/80-test_ssl_new.t diff | blob | history
test/ssl-tests/19-mac-then-encrypt.conf [new file with mode: 0644] blob
test/ssl-tests/19-mac-then-encrypt.conf.in [new file with mode: 0644] blob
Unnamed repository; edit this file 'description' to name the repository.