[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Qemu-devel] [PATCH] crypto: ensure we use a predictable TLS priority se
From: |
Daniel P . Berrangé |
Subject: |
[Qemu-devel] [PATCH] crypto: ensure we use a predictable TLS priority setting |
Date: |
Wed, 28 Feb 2018 14:06:52 +0000 |
The TLS test cert generation relies on a fixed set of algorithms that are
only usable under GNUTLS' default priority setting. When building QEMU
with a custom distro specific priority setting, this can cause the TLS
tests to fail. By forcing the tests to always use "NORMAL" priority we
can make them more robust.
Signed-off-by: Daniel P. Berrangé <address@hidden>
---
tests/test-crypto-tlssession.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/tests/test-crypto-tlssession.c b/tests/test-crypto-tlssession.c
index 1a4a066d76..82f21c27f2 100644
--- a/tests/test-crypto-tlssession.c
+++ b/tests/test-crypto-tlssession.c
@@ -75,6 +75,7 @@ static QCryptoTLSCreds
*test_tls_creds_create(QCryptoTLSCredsEndpoint endpoint,
"server" : "client"),
"dir", certdir,
"verify-peer", "yes",
+ "priority", "NORMAL",
/* We skip initial sanity checks here because we
* want to make sure that problems are being
* detected at the TLS session validation stage,
--
2.14.3
- [Qemu-devel] [PATCH] crypto: ensure we use a predictable TLS priority setting,
Daniel P . Berrangé <=