Skip to content

Commit 703bbf5

Browse files
nikicnikic
committed
Downgrade security level in tests using TLS < 1.2
A few additional tests have been added on master that require lower security level. (cherry picked from commit c2a6395)
1 parent f901bec commit 703bbf5

File tree

5 files changed

+14
-4
lines changed

5 files changed

+14
-4
lines changed

ext/openssl/tests/session_meta_capture.phpt

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,8 @@ $serverCode = <<<'CODE'
1414
$serverUri = "ssl://127.0.0.1:64321";
1515
$serverFlags = STREAM_SERVER_BIND | STREAM_SERVER_LISTEN;
1616
$serverCtx = stream_context_create(['ssl' => [
17-
'local_cert' => '%s'
17+
'local_cert' => '%s',
18+
'security_level' => 1,
1819
]]);
1920
2021
$server = stream_socket_server($serverUri, $errno, $errstr, $serverFlags, $serverCtx);
@@ -36,6 +37,7 @@ $clientCode = <<<'CODE'
3637
'cafile' => '%s',
3738
'peer_name' => '%s',
3839
'capture_session_meta' => true,
40+
'security_level' => 1,
3941
]]);
4042
4143
phpt_wait();

ext/openssl/tests/stream_crypto_flags_001.phpt

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,8 @@ $serverCode = <<<'CODE'
1414
$serverUri = "ssl://127.0.0.1:64321";
1515
$serverFlags = STREAM_SERVER_BIND | STREAM_SERVER_LISTEN;
1616
$serverCtx = stream_context_create(['ssl' => [
17-
'local_cert' => '%s'
17+
'local_cert' => '%s',
18+
'security_level' => 1,
1819
]]);
1920
2021
$server = stream_socket_server($serverUri, $errno, $errstr, $serverFlags, $serverCtx);
@@ -34,6 +35,7 @@ $clientCode = <<<'CODE'
3435
'verify_peer' => true,
3536
'cafile' => '%s',
3637
'peer_name' => '%s',
38+
'security_level' => 1,
3739
]]);
3840
3941
phpt_wait();

ext/openssl/tests/stream_crypto_flags_002.phpt

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,8 @@ $serverCode = <<<'CODE'
1414
$serverUri = "ssl://127.0.0.1:64321";
1515
$serverFlags = STREAM_SERVER_BIND | STREAM_SERVER_LISTEN;
1616
$serverCtx = stream_context_create(['ssl' => [
17-
'local_cert' => '%s'
17+
'local_cert' => '%s',
18+
'security_level' => 1,
1819
]]);
1920
2021
$server = stream_socket_server($serverUri, $errno, $errstr, $serverFlags, $serverCtx);
@@ -35,6 +36,7 @@ $clientCode = <<<'CODE'
3536
'verify_peer' => true,
3637
'cafile' => '%s',
3738
'peer_name' => '%s',
39+
'security_level' => 1,
3840
]]);
3941
4042
phpt_wait();

ext/openssl/tests/stream_crypto_flags_003.phpt

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -17,8 +17,9 @@ $serverCode = <<<'CODE'
1717
$serverCtx = stream_context_create(['ssl' => [
1818
'local_cert' => '%s',
1919
20-
// Only accept TLSv1.2 connections
20+
// Only accept TLSv1.0 and TLSv1.2 connections
2121
'crypto_method' => STREAM_CRYPTO_METHOD_TLSv1_0_SERVER | STREAM_CRYPTO_METHOD_TLSv1_2_SERVER,
22+
'security_level' => 1,
2223
]]);
2324
2425
$server = stream_socket_server($serverUri, $errno, $errstr, $serverFlags, $serverCtx);
@@ -39,6 +40,7 @@ $clientCode = <<<'CODE'
3940
'verify_peer' => true,
4041
'cafile' => '%s',
4142
'peer_name' => '%s',
43+
'security_level' => 1,
4244
]]);
4345
4446
phpt_wait();

ext/openssl/tests/stream_crypto_flags_004.phpt

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -16,6 +16,7 @@ $serverCode = <<<'CODE'
1616
$serverCtx = stream_context_create(['ssl' => [
1717
'local_cert' => '%s',
1818
'crypto_method' => STREAM_CRYPTO_METHOD_TLSv1_0_SERVER,
19+
'security_level' => 1,
1920
]]);
2021
2122
$server = stream_socket_server($serverUri, $errno, $errstr, $serverFlags, $serverCtx);
@@ -36,6 +37,7 @@ $clientCode = <<<'CODE'
3637
'verify_peer' => true,
3738
'cafile' => '%s',
3839
'peer_name' => '%s',
40+
'security_level' => 1,
3941
]]);
4042
4143
phpt_wait();

0 commit comments

Comments
 (0)