Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

tests: Skip eap_tls_pkcs8_pkcs5_v15 with BoringSSL

It does not look like BoringSSL allows pbeWithMD5AndDES-CBC to be used
to protect the local private key, so skip this test case.

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen 8 years ago
parent
d7f12e4eb9
commit
969e525091
1 changed files with 6 additions and 0 deletions
Split View Show Diff Stats
  1. 6 0
      tests/hwsim/test_ap_eap.py

+ 6 - 0
tests/hwsim/test_ap_eap.py
View File 

@@ -80,6 +80,11 @@ def check_ocsp_support(dev):
 
     #if "BoringSSL" in tls:
 
     #    raise HwsimSkip("OCSP not supported with this TLS library: " + tls)
 
 
+def check_pkcs5_v15_support(dev):
 
+    tls = dev.request("GET tls_library")
 
+    if "BoringSSL" in tls:
 
+        raise HwsimSkip("PKCS#5 v1.5 not supported with this TLS library: " + tls)
 
+
 
 def check_ocsp_multi_support(dev):
 
     tls = dev.request("GET tls_library")
 
     if not tls.startswith("internal"):
 
@@ -1848,6 +1853,7 @@ def test_eap_tls_pkcs8_pkcs5_v2_des3(dev, apdev):
 
 
 def test_eap_tls_pkcs8_pkcs5_v15(dev, apdev):
 
     """WPA2-Enterprise connection using EAP-TLS and PKCS #8, PKCS #5 v1.5 key"""
 
+    check_pkcs5_v15_support(dev[0])
 
     params = hostapd.wpa2_eap_params(ssid="test-wpa2-eap")
 
     hapd = hostapd.add_ap(apdev[0], params)
 
     eap_connect(dev[0], hapd, "TLS", "tls user", ca_cert="auth_serv/ca.pem",