Skip to content

Commit

Permalink
more comments
Browse files Browse the repository at this point in the history
  • Loading branch information
lrstewart committed Dec 9, 2024
1 parent 333fab4 commit b88e56c
Showing 1 changed file with 4 additions and 0 deletions.
4 changes: 4 additions & 0 deletions tests/integrationv2/common.py
Original file line number Diff line number Diff line change
Expand Up @@ -113,11 +113,15 @@ def __init__(self, name, prefix, location=TEST_CERT_DIRECTORY):
def compatible_with_cipher(self, cipher):
if self.algorithm == cipher.algorithm:
return True
# TLS1.3 cipher suites do not specify auth method, so allow any auth method
if cipher.algorithm == 'ANY':
return True
if self.algorithm == 'RSAPSS':
# RSA-PSS certs can only be used by ciphers with RSA auth
if cipher.algorithm != 'RSA':
return False
# RSA-PSS certs do not support RSA key exchange, only RSA auth
# "DHE" here is intended to capture both "DHE" and "ECDHE"
if 'DHE' in cipher.name:
return True
return False
Expand Down

0 comments on commit b88e56c

Please sign in to comment.