Fix skipped tests in configurations without RSA Tighten the matching when detecting which certificates are in use to determine algorithm requirements. This fixes a bug whereby all tests were skipped in configurations without RSA except for an Mbed TLS client against a GnuTLS or OpenSSL server, due to *server2* matching ssl_server2. Fixes #8366. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

commit: 1bc28fe34bf5941c164bb038ef33f98e043beaa1 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Fri Apr 26 21:28:49 2024 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Tue May 14 12:06:20 2024 +0200
tree: 755173a96b5020539df1ad22ef72982e6e872c2c
parent: f1415b65d006eae3679f46f079c09293fcfc118e [diff] [blame]
diff --git a/tests/ssl-opt.sh b/tests/ssl-opt.sh
index 3549a7b..8e32a69 100755
--- a/tests/ssl-opt.sh
+++ b/tests/ssl-opt.sh

@@ -443,9 +443,9 @@
     esac
 
     case "$CMD_LINE" in
-        *server5*|\
-        *server7*|\
-        *dir-maxpath*)
+        */server5*|\
+        */server7*|\
+        */dir-maxpath*)
             if [ "$TLS_VERSION" = "TLS13" ]; then
                 # In case of TLS13 the support for ECDSA is enough
                 requires_pk_alg "ECDSA"
@@ -477,8 +477,8 @@
     esac
 
     case "$CMD_LINE" in
-        *server2*|\
-        *server7*)
+        */server2*|\
+        */server7*)
             # server2 and server7 certificates use RSA encryption
             requires_config_enabled "MBEDTLS_RSA_C"
     esac
commit	1bc28fe34bf5941c164bb038ef33f98e043beaa1	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Fri Apr 26 21:28:49 2024 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Tue May 14 12:06:20 2024 +0200
tree	755173a96b5020539df1ad22ef72982e6e872c2c
parent	f1415b65d006eae3679f46f079c09293fcfc118e [diff] [blame]