Add a daily run-checker test for the TLS security level

Add a test to check that if the user reduces the default TLS security level at configure time, then the tests still pass. Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: Tim Hudson <tjh@openssl.org> (Merged from https://github.com/openssl/openssl/pull/26256)
author: Matt Caswell <matt@openssl.org> 2024-12-24 10:34:27 +0100
committer: Tomas Mraz <tomas@openssl.org> 2024-12-26 19:55:17 +0100
commit: 0958f5a5bc47e2cca907a3bfaf14059c020324fd (patch)
tree: 77eece1e96dc91c3afd1934f792c906700846935
parent: Ensure the tests pass even if the default seclevel has been changed (diff)
download: openssl-0958f5a5bc47e2cca907a3bfaf14059c020324fd.tar.xz
openssl-0958f5a5bc47e2cca907a3bfaf14059c020324fd.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/.github/workflows/run-checker-daily.yml b/.github/workflows/run-checker-daily.yml
index cb3087a15e..7ecc5c354a 100644
--- a/.github/workflows/run-checker-daily.yml
+++ b/.github/workflows/run-checker-daily.yml
@@ -138,7 +138,8 @@ jobs:
           -DOPENSSL_PEDANTIC_ZEROIZATION,
           -DOPENSSL_PEDANTIC_ZEROIZATION enable-fips,
           -DOPENSSL_NO_BUILTIN_OVERFLOW_CHECKING,
-          -DSSL3_ALIGN_PAYLOAD=4
+          -DSSL3_ALIGN_PAYLOAD=4,
+          -DOPENSSL_TLS_SECURITY_LEVEL=0
         ]
     runs-on: ubuntu-latest
     steps:
author	Matt Caswell <matt@openssl.org>	2024-12-24 10:34:27 +0100
committer	Tomas Mraz <tomas@openssl.org>	2024-12-26 19:55:17 +0100
commit	0958f5a5bc47e2cca907a3bfaf14059c020324fd (patch)
tree	77eece1e96dc91c3afd1934f792c906700846935
parent	Ensure the tests pass even if the default seclevel has been changed (diff)
download	openssl-0958f5a5bc47e2cca907a3bfaf14059c020324fd.tar.xz openssl-0958f5a5bc47e2cca907a3bfaf14059c020324fd.zip