Add a ciphersuite config sanity check for clients

Ensure that there are ciphersuites enabled for the maximum supported version we are claiming in the ClientHello. Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/3316)
author: Matt Caswell <matt@openssl.org> 2017-04-26 10:38:32 +0100
committer: Matt Caswell <matt@openssl.org> 2017-04-26 14:31:00 +0100
commit: aafec89c63efeade20f1bdc8023d2bb611e419b8 (patch)
tree: 039547d33afe19126454203836f5fc3176f63530 /test/ssl-tests/19-mac-then-encrypt.conf
parent: bf846a6d47a0f94b9771ead5ce52786045e58f49 (diff)
download: openssl-aafec89c63efeade20f1bdc8023d2bb611e419b8.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/test/ssl-tests/19-mac-then-encrypt.conf b/test/ssl-tests/19-mac-then-encrypt.conf
index bba44d1703..0dd384ea6c 100644
--- a/test/ssl-tests/19-mac-then-encrypt.conf
+++ b/test/ssl-tests/19-mac-then-encrypt.conf
@@ -96,12 +96,12 @@ client = 3-disable-encrypt-then-mac-server-sha2-client
 [3-disable-encrypt-then-mac-server-sha2-server]
 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
 CipherString = DEFAULT
-MaxProtocol = TLSv1.2
 Options = -EncryptThenMac
 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
 
 [3-disable-encrypt-then-mac-server-sha2-client]
 CipherString = AES128-SHA256
+MaxProtocol = TLSv1.2
 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
 VerifyMode = Peer
author	Matt Caswell <matt@openssl.org>	2017-04-26 10:38:32 +0100
committer	Matt Caswell <matt@openssl.org>	2017-04-26 14:31:00 +0100
commit	aafec89c63efeade20f1bdc8023d2bb611e419b8 (patch)
tree	039547d33afe19126454203836f5fc3176f63530 /test/ssl-tests/19-mac-then-encrypt.conf
parent	bf846a6d47a0f94b9771ead5ce52786045e58f49 (diff)
download	openssl-aafec89c63efeade20f1bdc8023d2bb611e419b8.tar.gz