diff options
author | DjLegolas <DjLegolas@users.noreply.github.com> | 2018-06-24 20:39:04 +0300 |
---|---|---|
committer | Calum Lind <calumlind+deluge@gmail.com> | 2018-09-06 19:14:13 +0100 |
commit | b9a9e06c1d7a370aee87bdca2237eb79c7e7890f (patch) | |
tree | bb21452a2d535c20c4f669192e307febfe1350c3 /.travis.yml | |
parent | 456e720b756c39408402410f2ad9d421c1a1b01b (diff) | |
download | deluge-b9a9e06c1d7a370aee87bdca2237eb79c7e7890f.tar.gz deluge-b9a9e06c1d7a370aee87bdca2237eb79c7e7890f.tar.bz2 deluge-b9a9e06c1d7a370aee87bdca2237eb79c7e7890f.zip |
[WebUI][Daemon] Enhance TLS Security
This applies the following for both WebUI and Daemon:
1. Raised minimal TLS version to TLSv1.2
2. Added specific cipher suite list
3. Added support for ECDSA auth keys
4. Added support for ECDHE key exchange algorithm
We disabled the ability to perform TLS/SSL renegotiation and therefore
will prevent the clients from renegotiating, which can be exploit for
DoS attacks.
New security tests now will be skipped when running `pydef` and `trial`
testenvs. To run the test, use the testenv `security` or add the environment
variable `SECURITY_TESTS` before running the tests. Also should only run when
adding to the commit message the string `SECURITY_TEST`.
Diffstat (limited to '.travis.yml')
-rw-r--r-- | .travis.yml | 28 |
1 files changed, 18 insertions, 10 deletions
diff --git a/.travis.yml b/.travis.yml index 45692583e..fc8e8d9f5 100644 --- a/.travis.yml +++ b/.travis.yml @@ -16,22 +16,30 @@ install: - bash -c "echo $APTPACKAGES" - sudo apt-get install $APTPACKAGES - pip install tox + # the next part is for the security tests only. + - wget https://github.com/drwetter/testssl.sh/archive/v2.9.5-5.tar.gz -O testssl.tar.gz + - tar -xvzf testssl.tar.gz + - mv -t deluge/tests/data testssl.sh-2.9.5-5/testssl.sh testssl.sh-2.9.5-5/etc/ env: global: - APTPACKAGES="python-libtorrent" - APTPACKAGES_GTKUI="python-gobject python-glade2" - DISPLAY=:99.0 - matrix: - - TOX_ENV=pydef - - TOX_ENV=flake8 -# - TOX_ENV=flake8-complexity - - TOX_ENV=docs -# - TOX_ENV=todo - - TOX_ENV=trial APTPACKAGES="$APTPACKAGES $APTPACKAGES_GTKUI" - - TOX_ENV=pygtkui APTPACKAGES="$APTPACKAGES $APTPACKAGES_GTKUI" -# - TOX_ENV=testcoverage APTPACKAGES="$APTPACKAGES $APTPACKAGES_GTKUI" - - TOX_ENV=plugins + +matrix: + include: + - env: TOX_ENV=pydef + - if: commit_message =~ SECURITY_TEST + env: TOX_ENV=security + - env: TOX_ENV=flake8 + #- env: TOX_ENV=flake8-complexity + - env: TOX_ENV=docs + #- env: TOX_ENV=todo + - env: TOX_ENV=trial APTPACKAGES="$APTPACKAGES $APTPACKAGES_GTKUI" + - env: TOX_ENV=pygtkui APTPACKAGES="$APTPACKAGES $APTPACKAGES_GTKUI" + #- env: TOX_ENV=testcoverage APTPACKAGES="$APTPACKAGES $APTPACKAGES_GTKUI" + - env: TOX_ENV=plugins virtualenv: system_site_packages: true |