Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-7547

Include TLS tests in the test suite

        Details

        • Type: Bug
        • Status: Closed
        • Priority: Major
        • Resolution: Fixed
        • Affects Version/s: 5.5.41
        • Fix Version/s: 5.5.41
        • Component/s: SSL, Tests
        • Labels:
          None
        • Environment:
          RHEL-6

          Description

          This issue was originally reported here:
          https://bugzilla.redhat.com/show_bug.cgi?id=1189180

          The maraidb self tests include a SSLv3 test. With the padding attack on SSLv3, should this test be updated to TLS as recent versions of openssl strongly prefer it?

          Steps to Reproduce:
          1. review test code for main.openssl_1

          Actual results:
          uses SSLv3 to verify encryption channel

          Expected results:
          uses TLS to verify encryption channel

            Gliffy Diagrams

              Attachments

                Issue Links

                relates to

                Task - A task that needs to be done. MDEV-6975 Implement TLS protocol

                • Major - Major loss of function.
                • Closed
                links to

                Web Link Bug 1189180 - mariadb55-mariadb-5.5.41-12.el6 uses SSLv3 test

                  Activity

                  Ascending order - Click to sort in descending order
                  Hide
                  Permalink
                  elenst Elena Stepanova added a comment -

                  Is it not what t/openssl_6975.test does?

                  Show
                  elenst Elena Stepanova added a comment - Is it not what t/openssl_6975.test does?
                  Hide
                  Permalink
                  serg Sergei Golubchik added a comment -

                  Honza Horak, I see in https://bugzilla.redhat.com/show_bug.cgi?id=1189180 that you have found openssl_6975.test that tests TLS.

                  Can we close this issue? I'd prefer to keep at least some SSLv3 tests to be able to test yassl (and old openssl, we have it on a couple of builders) tests.

                  Show
                  serg Sergei Golubchik added a comment - Honza Horak , I see in https://bugzilla.redhat.com/show_bug.cgi?id=1189180 that you have found openssl_6975.test that tests TLS. Can we close this issue? I'd prefer to keep at least some SSLv3 tests to be able to test yassl (and old openssl, we have it on a couple of builders) tests.
                  Hide
                  Permalink
                  hhorak Honza Horak added a comment -

                  yes, feel free to close this, thanks.

                  Show
                  hhorak Honza Horak added a comment - yes, feel free to close this, thanks.
                  Hide
                  Permalink
                  serg Sergei Golubchik added a comment - - edited

                  TLS tests (openssl_6975.test) were added in 5.5.41

                  Show
                  serg Sergei Golubchik added a comment - - edited TLS tests (openssl_6975.test) were added in 5.5.41

                    People

                    • Assignee:
                      serg Sergei Golubchik
                      Reporter:
                      hhorak Honza Horak
                    • Votes:
                      0 Vote for this issue
                      Watchers:
                      3 Start watching this issue

                      Dates

                      • Created:
                        Updated:
                        Resolved: