tests: force use of "NORMAL" TLS priority in test suite

When generating certificates we rely on GNUTLS' built-in default setup for the ciphers used in the certs. We then currently run with the distro specific TLS priority setup which can be much stronger, to the extent that the certificates we generate are considered untrustworthy. We don't care about the quality of the ciphers we use in the test suite, so just force the priority to "NORMAL" which should ensure our certs are accepted by GNUTLS. Signed-off-by: N Daniel P. Berrangé <berrange@redhat.com>

tests: force use of "NORMAL" TLS priority in test suite
When generating certificates we rely on GNUTLS' built-in default setup for the ciphers used in the certs. We then currently run with the distro specific TLS priority setup which can be much stronger, to the extent that the certificates we generate are considered untrustworthy. We don't care about the quality of the ciphers we use in the test suite, so just force the priority to "NORMAL" which should ensure our certs are accepted by GNUTLS. Signed-off-by: N Daniel P. Berrangé <berrange@redhat.com>
874306dd · Daniel P. Berrangé · b4fad8ec · 874306dd · 874306dd
隐藏空白更改
内联并排

Showing with 4 addition and 4 deletion

tests/virnettlscontexttest.c tests/virnettlscontexttest.c +2 -2

tests/virnettlssessiontest.c tests/virnettlssessiontest.c +2 -2

未找到文件。
--- a/tests/virnettlscontexttest.c
+++ b/tests/virnettlscontexttest.c
@@ -72,7 +72,7 @@ static int testTLSContextInit(const void *opaque)
                                         data->crt,
                                         KEYFILE,
                                         NULL,
-                                         NULL,
+                                         "NORMAL",
                                         true,
                                         true);
    } else {
@@ -80,7 +80,7 @@ static int testTLSContextInit(const void *opaque)
                                         NULL,
                                         data->crt,
                                         KEYFILE,
-                                         NULL,
+                                         "NORMAL",
                                         true,
                                         true);
    }

--- a/tests/virnettlssessiontest.c
+++ b/tests/virnettlssessiontest.c
@@ -113,7 +113,7 @@ static int testTLSSessionInit(const void *opaque)
                                           data->servercrt,
                                           KEYFILE,
                                           data->wildcards,
-                                           NULL,
+                                           "NORMAL",
                                           false,
                                           true);

@@ -121,7 +121,7 @@ static int testTLSSessionInit(const void *opaque)
                                           NULL,
                                           data->clientcrt,
                                           KEYFILE,
-                                           NULL,
+                                           "NORMAL",
                                           false,
                                           true);