On 2012-05-19 at 23:28 +0100, Jeremy Harris wrote:
> On 2012-05-19 20:32, Jeremy Harris wrote:
> > On 2012-05-19 08:50, Phil Pennock wrote:
> > [RC2 announcement]
>
> ... and more testsuite fun with GnuTLS (really, this time).
> Seems my test system runs GnuTLS1.1 - which wasn't allowed
> for by the suite. I'm leaning towards:
I think you mean a version of GnuTLS which only supports TLS1.1, not
TLS1.2, rather than GnuTLS1.1.
> - s/X=TLS1.2:DHE_RSA_AES_256_CBC_SHA256:256/X=TLS1.0:DHE_RSA_AES_256_CBC_SHA1:256/g;
> + s/TLS1.[012]:(DHE_)?RSA_AES_256_CBC_SHA(1|256):256/TLS1.x:xxxxRSA_AES_256_CBC_SHAnnn:256/g;
> s/\bDHE-RSA-AES256-SHA256\b/DHE-RSA-AES256-SHA/g;
> .... plus a rash of resulting testcase output changes. But I've not run
> an OpenSSL build past it yet.
Is it necessary to drop the X= ? There were other instances where this
was needed?
Either normalise to the same string as before and avoid the need for
changes beyond runtest, or we should fix all of the cipher
normalisations to make it clear they're normalised, as you did, not just
this one. *sigh*
-Phil