From d1e85dac0c528129317c74e4a3ada18ad7b8b595 Mon Sep 17 00:00:00 2001 From: Mauri Miettinen Date: Wed, 17 Aug 2016 15:52:43 +0300 Subject: [PATCH] Readded sanity test for tlsfun, placeholder edition --- runners/trytls/bundles/https.py | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/runners/trytls/bundles/https.py b/runners/trytls/bundles/https.py index 34e230e..23d67b3 100644 --- a/runners/trytls/bundles/https.py +++ b/runners/trytls/bundles/https.py @@ -223,6 +223,16 @@ def tlsfun_tests(): if res.type != results.Pass: forced_result = results.Skip("could not detect SNI support") + res = yield Test( + accept=False, + description="self-signed certificate (temporarily using badssl.com)", + host="self-signed.badssl.com", + port=443, + forced_result=forced_result + ) + if res.type != results.Pass and not forced_result: + forced_result = results.Skip("stub didn't reject a self-signed certificate") + yield testgroup( tlsfun(False, "badcert-edell", "eDellRoot CA #2", forced_result) )