THRIFT-4084: Add a SSL/TLS negotiation check to crossfeature to verify SSLv3 is not active and that at least one of TLSv1.0 through 1.2 are accepted. Client: csharp, d, go, nodejs, perl This closes #1197

commit: 06190874c8ba8f3a0c7ae83a59965d56c205e080 [log] [tgz]
author: James E. King, III <jking@apache.org> Mon Feb 20 08:52:11 2017 -0500
committer: James E. King, III <jking@apache.org> Mon Feb 20 08:52:11 2017 -0500
tree: fa2bedf10194cb1ec79b2d9546b4917bc4107e59
parent: 239233afb6fd5bd2fb81743e88303c9ac17d7edb [diff] [blame]
diff --git a/test/features/tests.json b/test/features/tests.json
index cfcb4b6..3ab3b68 100644
--- a/test/features/tests.json
+++ b/test/features/tests.json

@@ -90,5 +90,27 @@
     "transports": ["buffered"],
     "sockets": ["ip"],
     "workdir": "features"
+  },
+  {
+    "name": "nosslv3",
+    "comment": "check to make sure SSLv3 is not supported",
+    "command": [
+      "nosslv3.sh"
+    ],
+    "protocols": ["binary"],
+    "transports": ["buffered"],
+    "sockets": ["ip-ssl"],
+    "workdir": "features"
+  },
+  {
+    "name": "tls",
+    "comment": "check to make sure TLSv1.0 or later is supported",
+    "command": [
+      "tls.sh"
+    ],
+    "protocols": ["binary"],
+    "transports": ["buffered"],
+    "sockets": ["ip-ssl"],
+    "workdir": "features"
   }
 ]
commit	06190874c8ba8f3a0c7ae83a59965d56c205e080	[log] [tgz]
author	James E. King, III <jking@apache.org>	Mon Feb 20 08:52:11 2017 -0500
committer	James E. King, III <jking@apache.org>	Mon Feb 20 08:52:11 2017 -0500
tree	fa2bedf10194cb1ec79b2d9546b4917bc4107e59
parent	239233afb6fd5bd2fb81743e88303c9ac17d7edb [diff] [blame]